Index
A
- Access Control tab
- about / Access control tab
- Access Control tabs
- general / General
- authentication / Authentication
- service / Service
- data store / Data stores
- privileges / Privileges
- policies / Policies
- subjects / Subjects
- agents / Agents
- access management
- about / Access management, Policies
- Access manager repository plug-in
- about / Access Manager Repository plugin
- data store, creating for / Creating an Access Manager Repository plugin data store
- data store properties, displaying / Displaying the data store properties
- data store properties, updating / Updating data store properties
- data store, deleting / Deleting data stores
- removing / Removing the Access Manager Repository plugin
- Access Manager Repository plugin / Prerequisites
- account lockout, attributes
- inetuserstatus / Account lockout
- iplanet-am-user-login-status / Account lockout
- iplanet-am-user-account-life / Account lockout
- nsaccountlock / Account lockout
- account lockout, OpenSSO
- about / Account lockout
- configuring / Configuring account lockout
- physical lockout / Physical lockout
- in-memory lockout / In-memory lockout
- action parameter / Authorization
- Active Directory
- about / Active Directory
- add-auth-cfg-entr command / Authentication modules, instances, and chains
- administration interfaces, OpenSSO
- about / Administration interfaces
- administrative console
- accessing / Accessing the administrative console
- agent configuration
- scenarios / Scenario 1, Scenario 2
- agent identities
- creating / Creating agent identities
- deleting / Deleting the agent identities
- agent profile
- creating / Creating the agent profile
- agent profiles
- agents
- searching for / Searching for agents
- Anonymous module
- about / Anonymous
- Apache Tomcat 6.0.20
- configuring / Installing and configuring Apache Tomcat 6.0.20
- installing / Installing and configuring Apache Tomcat 6.0.20
- Apache Tomcat container / Containers and operating systems support
- appid parameter / Creating log events
- arg parameter
- about / arg parameter
- attributes
- adding, to amUser.xml file / Adding attributes to amUser.xml
- audit logging
- need for / Audit logging
- about / Audit logging
- disabling / Enabling and disabling audit logging
- enabling / Enabling and disabling audit logging
- audit trails
- about / OpenSSO audit and logging
- authenticate interface
- invoking / Authentication
- authentication
- about / Authentication
- authentication and session
- scenarios / Authentication and session areas, Scenario 2, Scenario 4
- authentication chain
- about / Authentication chains
- creating / Creating an authentication chain
- updating / Updating an authentication chain
- reading / Reading an authentication chain
- using / Using an authentication chain
- deleting / Deleting an authentication chain
- authentication instance
- creating / Creating an authentication instance
- updating / Updating an authentication instance
- reading / Reading an authentication instance
- using / Using an authentication instance
- deleting / Deleting an authentication instance
- authentication modules, OpenSSO
- LDAP / LDAP
- Active Directory / Active Directory
- data store / Data store
- Anonymous / Anonymous
- Certificate (X.509) / Certificate (X.509), Configuring Tomcat in SSL using CA signed certificate
- HTTP basic / HTTP basic authentication
- Membership / Membership
- JDBC / JDBC
- HOTP / HOTP
- SecurID / SecurID
- SafeWord / SafeWord
- RADIUS / RADIUS
- Unix / Unix
- Windows NT / Windows NT
- Windows Desktop SSO / Windows Desktop SSO
- Core / Core
- authentication protocol, OpenSSO
- LDAP / LDAP authentication
- authentication service
- about / Authentication process
- authentication types, OpenSSO
- authentication URL parameters, OpenSSO
- about / Other authentication URL parameters
- IDToken / IDToken parameter
- goto / goto and gotoOnFail parameters
- gotoOnFail / goto and gotoOnFail parameters
- locale / locale parameter
- arg / arg parameter
- iPSPCookie / iPSPCookie parameter
- ForceAuth / ForceAuth parameter
- PersistAMCookie / PersistAMCookie parameter
- authorization
- about / Authorization
- authorize method
- parameters / Authorization
- about / Authorization
- authorize method, parameters
- action / Authorization
- uri / Authorization
- subjectid / Authorization
B
- bootstrap file / Backing up configuration data
- bootstrap locator file / What just happened?
- BSD-style license / Datastore for OpenLDAP
C
- caching
- about / Caching and notification
- Certificate (X.509)
- CLI tool
- about / Administration interfaces
- command line configurator
- OpenSSO, configuring / Configuring using command line configurator
- command line tool
- users, managing from / Managing users from the command line tool
- groups, managing from / Managing groups from a command line tool
- command line tools
- scenarios / Scenario 1, Scenario 2
- condition / OpenSSO Policy Framework
- configuration, account lockout
- about / Configuring account lockout
- configuration, diagnostic tools
- configuration, OpenLDAP server / Configuring an OpenLDAP suffix
- configuration, OpenSSO server
- scenarios / Installation and configuration, Scenario 1, Scenario 3, Scenario 4
- configuration change
- performing / Performing the configuration change
- configuration data
- configuration directory, OpenSSO / Layout of the configuration directory
- configuration files
- backing up / Backing up the OpenSSO configuration files
- configuration store
- versus identity store / Configuration store versus Identity Store
- about / Configuration store
- embedded configuration store / Embedded configuration store
- Configuration tab
- about / Configuration
- server properties, retrieving / Retrieving all the server properties
- server configuration properties, updating / Updating server configuration properties
- server configuration properties, removing / Removing properties from server configuration
- console customization, OpenSSO
- about / Customizing the console
- LDAP schema, extending / Extending LDAP schema
- cookies
- about / Cookies in OpenSSO
- core authentication module
- about / Core
- user profile requisites / User profile requirement
- user profile attributes, setting in SSO token / Setting user profile attributes in an SSO token
- crash recovery
- about / Crash recovery and restore
- create-auth-cfg command / Authentication modules, instances, and chains
- create-auth-instance command / Authentication modules, instances, and chains
- CRL
- about / Certificate (X.509)
- CRUD / Administration interfaces
- CSR
- about / Creating the keystore
- custom authentication modules
- adding / Adding custom authentication modules
D
- database logging
- about / Database logging
- versus flat file logging / Database logging
- data store
- about / Data stores
- deleting / Deleting data stores, Deleting the data store
- creating, for Oracle DSEE / Creating a data store for Oracle DSEE
- updating / Updating the data store
- creating, for OpenDS / Data store for OpenDS
- creating, for Tivoli DS / Data store for Tivoli DS
- creating, for Microsoft Active Directory / Data store for Active Directory
- creating, for Microsoft Active Directory Application Mode (ADAM) / Data store for Active Directory Application Mode
- creating, for OpenLDAP / Datastore for OpenLDAP
- streamlining / Preparing the suffix with necessary entries
- testing / Testing the data store
- data store, creating
- for Oracle DSEE / Creating a data store for Oracle DSEE
- for OpenDS / Data store for OpenDS
- for Tivoli DS / Data store for Tivoli DS
- for Microsoft Active Directory / Data store for Active Directory
- for Microsoft Active Directory Application Mode (ADAM) / Data store for Active Directory Application Mode
- for OpenLDAP / Datastore for OpenLDAP, Creating an OpenLDAP data store
- data store authentication module
- about / Data store
- delete-auth-cfgs command / Authentication modules, instances, and chains
- delete-auth-instances command / Authentication modules, instances, and chains
- demilitarized zones (DMZs)
- about / Authentication process
- deployment requisites, OpenSSO web application
- about / Deployment requirements for OpenSSO web application
- operating systems support / Containers and operating systems support
- containers / Containers and operating systems support
- Java SDK support / Java SDK support
- disk and memory requisites / Disk and memory requirements
- browser requisites / Browser requirements
- diagnostic tools, OpenSSO
- about / OpenSSO diagnostic tools
- configuring / Installing and configuring the tool
- installing / Installing and configuring the tool
- invoking / Invoking the tool
- Directory Information Tree(DIT) / Identity store types
- distributed authentication (DA)
- about / Authentication process
- dsconfig utility
- about / Creating OpenDS policy
E
- embedded configuration store
- about / Embedded configuration store
- used, for single server configuration / Single server configuration–using embedded configuration store
- used, for multi server configuration / Multi-server configuration–embedded configuration store
- entitlements service
- about / OpenSSO Entitlements Service, Entitlements
- export-svc-cfg subcommand / Backing up the OpenSSO configuration files
- external configuration store
- used, for single server configuration / Single server configuration–using external configuration store
F
- Failure URL attribute / In-memory lockout
- federation
- about / Federation
- federation services
- about / Federation services
- file based logging
- about / File-based logging
- filter parameter / Searching identities
- flat file logging
- about / Database logging
- versus database logging / Database logging
- ForceAuth parameter
- about / ForceAuth parameter
G
- Geronimo container / Containers and operating systems support
- get-auth-cfg-entr command / Authentication modules, instances, and chains
- get-auth-instance command / Authentication modules, instances, and chains
- Glassfish container / Containers and operating systems support
- Glassfish EE container / Containers and operating systems support
- global services
- about / Service
- Google apps
- OpenSSO, integrating with / Integrating with Google Apps
- about / Integrating with Google Apps
- SSO parameters, configuring / Configuring SSO parameters at Google Apps
- gotoOnFail parameter
- about / goto and gotoOnFail parameters
- goto parameter
- about / goto and gotoOnFail parameters
- group identities
- creating / Creating group identities
- deleting / Deleting group identities
- groups
- managing, from command line tool / Managing groups from a command line tool
- searching / Searching groups
H
- hosted identity provider
- HOTP
- about / HOTP
- HTTP basic authentication
- about / HTTP basic authentication
I
- IBM WebSphere Application Server container / Containers and operating systems support
- identities
- creating / Creating policies and associated identities
- searching / Searching identities
- updating / Updating identities
- deleting / Deleting identities
- user identities, deleting / Deleting user identities
- group identities, deleting / Deleting group identities
- agent identities, deleting / Deleting the agent identities
- identity attributes
- retrieving / Retrieving identity attributes
- identity CRUD operations, OpenSSO
- about / Identity CRUD operations
- identities, searching / Searching identities
- identity attributes, retrieving / Retrieving identity attributes
- agent identities, creating / Creating agent identities
- user identities, creating / Creating user identities
- group identities, creating / Creating group identities
- identity repository
- scenarios / Identity repository and password reset, Scenario 3, Scenario 5
- identity repository plugins, OpenSSO
- about / Identity store types
- LDAPv3Repo / Identity store types
- SpecialRepo / Identity store types
- identity store
- versus configuration store / Configuration store versus Identity Store
- identity stores
- about / Identity store
- identity stores, OpenSSO / Supported identity stores
- IdRepo service / Identity store types
- IDToken parameter
- about / IDToken parameter
- import-svc-cfg subcommand / Crash recovery and restore
- in-memory lockout
- about / In-memory lockout
- considerations / In-memory lockout
- inetuserstatus attribute
- about / Account lockout
- installation, diagnostic tools
- installation, OpenSSO server
- scenarios / Installation and configuration, Scenario 1, Scenario 3, Scenario 4
- iplanet-am-user-account-life attribute
- about / Account lockout
- iplanet-am-user-login-status attribute
- about / Account lockout
- iPSPCookie parameter
- about / iPSPCookie parameter
- isTokenValid method
- invoking / Validating an SSO token
J
- J2EE agents
- about / OpenSSO Policy Framework
- JAAS
- about / Authentication chains
- java.util.logging classes / Audit logging
- Java application
- deploying / Deploying and configuring the Java application
- configuring / Deploying and configuring the Java application
- Java Key Store(JKS) / Audit logging
- JBOSS container / Containers and operating systems support
- JCE
- about / Secure logging
- JDBC
- about / JDBC
- JSS
- about / Secure logging
K
- keystore
- creating / Creating the keystore, How to verify
- keytool command
L
- LDAP
- about / LDAP, Datastore for OpenLDAP
- LDAP authentication
- about / LDAP authentication
- authentication instance, creating / Creating an authentication instance
- authentication instance, updating / Updating an authentication instance
- authentication instance, reading / Reading an authentication instance
- authentication instance, using / Using an authentication instance
- authentication instance, deleting / Deleting an authentication instance
- ldapmodify tool
- about / Assigning the policy to a user
- LDAP schema
- extending / Extending LDAP schema
- LDAPv3Repo plugin
- about / Identity store types
- level based authentication
- about / Level
- Liberty Alliance Project
- URL / Federation services
- list-auth-cfgs command / Authentication modules, instances, and chains
- list-auth-instances command / Authentication modules, instances, and chains
- Load balancer cookie
- locale parameter
- about / locale parameter
- log data base tables
- for OpenSSO / Database logging
- log events
- creating / Creating log events
- Login Context Cookie
- Login Failure Lockout Duration attribute / In-memory lockout
- logname parameter / Creating log events
- logout interface
- session, destroying / Invalidating session (logout)
- logstatus property / Enabling and disabling audit logging
M
- MAC
- about / Secure logging
- max-psearch-count property / Persistent search-based notification
- Membership module
- about / Membership
- message parameter / Creating log events
- Microsoft Active Directory
- data store, creating for / Data store for Active Directory
- Microsoft Active Directory Application Mode (ADAM)
- data store, creating for / Data store for Active Directory Application Mode
- module based authentication
- about / Module
- module parameter / Identity store types
- multiple data store, configuring / Multiple data stores
- multi server configuration, OpenSSO
- embedded configuration store used / Multi-server configuration–embedded configuration store
- prerequisites / Prerequisites for multi-server configuration
- verifying / Verification of multi-server deployment
- MVC
- about / Authentication process
N
- notification
- about / Persistent search-based notification
- persistent search based / Persistent search-based notification
- Time-To-Live (TTL) based / Time-to-live based notification
- TTL based cache refresh / TTL-specific properties for Identity Repository cache
- nsaccountlock attribute
- about / Account lockout
O
- OASIS
- URL / Federation services
- OCSP
- about / Certificate (X.509)
- ODSEE
- about / Oracle Directory Server Enterprise Edition
- data store, creating for / Creating a data store for Oracle DSEE
- ODSEE backup tools / Crash recovery and restore
- OpenAM
- versus OpenSSO / OpenSSO vs. OpenAM
- about / OpenSSO vs. OpenAM
- OpenDS
- about / Embedded configuration store, Data store for OpenDS
- data store, creating for / Data store for OpenDS
- opends directory / Backing up the OpenSSO configuration files
- OpenDS password policy
- about / Creating and assigning OpenDS password policy
- creating / Creating OpenDS policy
- assigning, to user / Assigning the policy to a user
- password change after reset, forcing / Forcing password change after reset
- location of secret question / Location of secret questions
- OpenLDAP
- data store, creating for / Datastore for OpenLDAP
- about / Datastore for OpenLDAP
- OpenLDAP data store
- creating / Creating an OpenLDAP data store
- testing / Testing the data store
- OpenLDAP server
- configuring / Configuring an OpenLDAP suffix
- schema file, finding / Extending the schema
- OpenSSO
- history / History of OpenSSO
- versus OpenAM / OpenSSO vs. OpenAM
- overview / OpenSSO—an overview
- services / OpenSSO services, Federation services, Web Services Security and Secure Token Service, OpenSSO Entitlements Service
- problem solving, types / What kind of problems does OpenSSO solve?, Federation, Securing web services, Entitlements
- configuration store / Configuration store
- identity stores / Identity store, Supported identity stores
- obtaining / How to obtain OpenSSO
- building, from source / Building OpenSSO from source
- configuring / Configuring OpenSSO
- configuration options / OpenSSO one click configuration
- adding, to existing deployment / Adding OpenSSO to an existing deployment
- configuring, command line configurator used / Configuring using command line configurator
- configuring, with SSL/TLS / Configuring OpenSSO with SSL/TLS
- command line tools, configuring / Configuring command line tools
- uninstalling / Uninstalling OpenSSO
- support model / OpenSSO release and support model
- administration interfaces / Administration interfaces
- administrative console, accessing / Accessing the administrative console
- console views / Console views and privileges
- privileges / Console views and privileges
- console landing page / Console landing page–common tasks
- realm / Access control tab
- console customization / Customizing the console
- authentication service / Authentication process
- cookies / Cookies in OpenSSO
- authentication URL parameters / Authentication types and URL parameters, Other authentication URL parameters
- authentication types / Authentication types and URL parameters
- authentication chain / Authentication chains
- authentication modules / Authentication modules
- custom authentication modules, adding / Adding custom authentication modules
- Session Service / Session Service
- account lockout / Account lockout
- password reset application configuration / Applying a password reset
- password reset service, configuring / Configuring the password reset service in OpenSSO, Assigning service and update service attributes
- policy agents / OpenSSO Policy Framework
- policy service / OpenSSO Policy Framework
- integrating, with Salesforce applications / Integrating OpenSSO with Salesforce applications
- integrating, with Google apps / Integrating with Google Apps
- identity repository plugins / Identity store types
- identity CRUD operations / Identity CRUD operations
- configuration data, backing up / Backing up configuration data
- crash recovery / Crash recovery and restore
- production environment, testing / Test to production
- configuration change, performing / Performing the configuration change
- test server configuration, exporting / Configuring the export test server
- configuring, on production server / Configuring OpenSSO on the production server
- test configuration data, adapting / Adapting the test configuration data
- auditing / OpenSSO audit and logging
- logging / OpenSSO audit and logging
- log data base tables / Database logging
- diagnostic tools / OpenSSO diagnostic tools
- troubleshooting issues / Troubleshooting
- OpenSSO, integrating with Google apps
- hosted identity provider, configuring / Configuring the hosted identity provider
- user identities, provisioning / Configuring users for Google Apps
- SSO, verifying / Verifying SSO
- OpenSSO, integrating with Salesforce applications
- hosted identity provider, configuring / Configuring hosted identity provider and circle of trust
- user identities, provisioning / Configuring users for Salesforce.com
- SSO, verifying / Verifying the SSO
- opensso.zip archive / OpenSSO diagnostic tools
- OpenSSOAgentBootstrap.properties file / Creating policies and associated identities
- OpenSSO audit logs
- about / Troubleshooting
- OpenSSO binary
- downloading / Downloading OpenSSO binary
- OpenSSO configuration
- verifying / Verifying OpenSSO configuration, What just happened?
- OpenSSO configuration data
- backing up / Backing up the OpenSSO configuration data
- OpenSSO configuration files
- backing up / Backing up the OpenSSO configuration files
- OpenSSO Meta Data
- configuring, for Salesforce.com / Configuring OpenSSO metadata for Salesforce.com
- OpenSSO Policy Service
- about / Policies
- OpenSSO product
- OpenSSO services
- about / OpenSSO services
- federation / Federation services
- web services security / Web Services Security and Secure Token Service
- Secure Token service / Web Services Security and Secure Token Service
- entitlements service / OpenSSO Entitlements Service
- customizing / Customizing OpenSSO User Service
- OpenSSO services, customizing
- about / Customizing OpenSSO User Service
- attributes, adding to amUser.xml / Adding attributes to amUser.xml
- user sevice schema, removing / Removing User Service schema
- updated user sevice schema, adding / Adding the updated User Service schema
- labels, adding / Adding the labels
- custom attributes, adding to data store configurations / Adding the custom attributes to data store configurations
- privileges, updating / Updating privileges
- changes, testing / Testing the changes
- OpenSSO web application
- deployment requisites / Deployment requirements for OpenSSO web application
- OpenXDAS
- about / OpenSSO audit and logging
- Oracle Application Server container / Containers and operating systems support
- Oracle WebLogic container / Containers and operating systems support
- OTP
- about / HOTP
P
- 0penSSO
- policy / OpenSSO Policy Framework
- PAM
- about / Unix
- parameter
- password change after reset
- forcing / Forcing password change after reset
- password reset
- scenarios / Identity repository and password reset, Scenario 3, Scenario 5
- password reset application configuration
- about / Applying a password reset
- prerequisites / Prerequisites
- password reset service
- password reset service login
- service attributes, updating / Assigning service and update service attributes
- assigning / Assigning service and update service attributes
- PEP
- PersistAMCookie parameter
- about / PersistAMCookie parameter
- Persistent Session
- physical lockout
- about / Physical lockout
- enabling / Physical lockout
- enforcing, in multi server environment / Physical lockout
- PKI
- about / Certificate (X.509)
- policy, OpenSSO
- about / OpenSSO Policy Framework
- rule / OpenSSO Policy Framework
- subject / OpenSSO Policy Framework
- condition / OpenSSO Policy Framework
- creating / Creating policies and associated identities
- Policy Administration Point(PAP)
- about / OpenSSO Policy Framework
- policy agents
- about / OpenSSO Policy Framework
- types / OpenSSO Policy Framework
- installing / Installing and configuring the agents
- configuring / Installing and configuring the agents
- Policy Decision Point (PDP)
- about / OpenSSO Policy Framework
- policy service
- about / OpenSSO Policy Framework
- policy store
- about / OpenSSO Policy Framework
- prerequisites, REST / Prerequisites
- private REST interfaces
- about / Other REST interfaces
- privileges
- about / Privileges
- production server
- OpenSSO, configuring on / Configuring OpenSSO on the production server
- production system
- importing into / Importing into the production system
- profile
- about / Authentication
- pull model / Time-to-live based notification
- push model / Time-to-live based notification
- pwdreset attribute
- about / Behind the scenes
- using / Behind the scenes
R
- RADIUS
- realm
- about / Access control tab
- realm based authentication
- about / Realm
- register-auth-module command / Authentication modules, instances, and chains
- remote logging
- about / Remote logging
- resource based authentication
- about / Resource
- REST
- prerequisites / Prerequisites
- REST interfaces
- invoking / Invoking REST interfaces, Authentication
- REST interfaces, invoking
- about / Invoking REST interfaces
- authentication / Authentication
- authenticating, with URL parameters / Authenticating with URL parameters
- SSO token, validating / Validating an SSO token
- session, invalidating / Invalidating session (logout)
- log events, creating / Creating log events
- authorization / Authorization
- role based authentication
- about / Role
- root realm
- about / Access control tab
- rule / OpenSSO Policy Framework
S
- SafeWord
- about / SafeWord
- Salesforce.com
- OpenSSO Meta Data, configuring for / Configuring OpenSSO metadata for Salesforce.com
- Salesforce applications
- OpenSSO, integrating with / Integrating OpenSSO with Salesforce applications
- SAML 2.0
- about / Federation services
- SAMLv2 response / Verifying the SSO
- sample application
- protecting, on Tomcat / Protecting a sample application on Tomcat, Creating the agent profile
- scenarios
- for authentication and session / Authentication and session areas, Scenario 2, Scenario 4
- for password reset / Identity repository and password reset, Scenario 3, Scenario 5
- for identity repository / Identity repository and password reset, Scenario 3, Scenario 5
- for agent configuration / Scenario 1, Scenario 2
- for command line tools / Scenario 1, Scenario 2
- secure logging
- about / Secure logging
- Secure Token service
- SecurID
- about / SecurID
- self service password reset
- about / Applying a password reset
- server configuration properties
- updating / Updating server configuration properties
- removing / Removing properties from server configuration
- server properties
- retrieving / Retrieving all the server properties
- service based authentication
- about / Service
- Service Management Service(SMS) / Audit logging
- ServletContext.getRealPath() method / Scenario 3
- session
- life cycle / Session life cycle
- structure / Session structuring
- state transition / Session state transition
- properties / Session properties
- polling / Session change notification and polling
- changes, notifying / Session change notification and polling
- persistence / Session persistence and constraints
- constraints / Session persistence and constraints
- invalidating / Invalidating session (logout)
- Session Failover / Multi-server configuration–embedded configuration store
- sessions
- managing. ssoadm tool used / Managing sessions using ssoadm
- Session Service
- about / Session Service
- schema / Session Service schema
- updating / Updating Session Service
- Session tab
- about / Sessions tab
- show-auth-modules command / Authentication modules, instances, and chains
- single server configuration, OpenSSO
- embedded configuration store used / Single server configuration–using embedded configuration store
- external configuration store used / Single server configuration–using external configuration store
- source
- OpenSSO, building from / Building OpenSSO from source
- SpecialRepo plugin
- about / Identity store types
- SSL/TLS
- OpenSSO, configuring / Configuring OpenSSO with SSL/TLS
- SSO
- testing / Testing the SSO
- verifying / Verifying the SSO, Verifying SSO
- ssoadm tool
- about / Administration interfaces, Configuring account lockout, Configuring OpenSSO on the production server
- sessions, managing / Managing sessions using ssoadm
- ssoDiagnosticTools.zip / OpenSSO diagnostic tools
- SSO parameters
- configuring, at Google apps / Configuring SSO parameters at Google Apps
- SSO token
- user profile attributes, setting in / Setting user profile attributes in an SSO token
- validating / Validating an SSO token
- about / Validating an SSO token
- SSO Token Cookie
- subject / OpenSSO Policy Framework
- subjectid parameter / Creating log events, Authorization
- Subjects interface
- about / Subjects
- sunAMAuthInvalidAttemptsData attribute / Physical lockout
- Sun Application Server container / Containers and operating systems support
- Sun Identity Manager / Administration interfaces
- Sun Java System Directory Server
- considering, as configuration store / External Sun Directory Server Enterprise Edition configuration store
T
- test configuration data
- adapting / Adapting the test configuration data
- test server configuration
- exporting / Configuring the export test server
- Tivoli DS
- data store, creating for / Data store for Tivoli DS
- Tomcat
- sample application, protecting on / Protecting a sample application on Tomcat, Creating the agent profile
- trace level logging
- enabling / Enabling debug (trace) level logging
- troubleshooting
- about / Troubleshooting
- Trust Association Interceptor (TAI)
- about / OpenSSO Policy Framework
- TTL context
U
- ums.xml file / Identity store types
- Unix authentication module
- about / Unix
- unregister-auth-module command / Authentication modules, instances, and chains
- update-auth-cfg-entr command / Authentication modules, instances, and chains
- update-auth-instance command / Authentication modules, instances, and chains
- uri parameter / Authorization
- URL parameters
- authenicating with / Authenticating with URL parameters
- user
- OpenDS password policy, assigning to / Assigning the policy to a user
- user based authentication
- about / User
- performing / Performing a user-based authentication
- user identities
- provisioning / Configuring users for Salesforce.com, Configuring users for Google Apps
- searching for / Searching for user identities
- creating / Creating user identities
- deleting / Deleting user identities
- user profile attributes
- setting up, in SSO token / Setting user profile attributes in an SSO token
- fetching / Fetching user profile attributes
- user profile requisites
- for core authentication module / User profile requirement
- users
- managing, from command line tool / Managing users from the command line tool
- user schema / User schema
W
- WAR file / Deployment requirements for OpenSSO web application
- web agents / OpenSSO Policy Framework
- webapp directory / Deployment requirements for OpenSSO web application
- web services
- securing / Securing web services
- web services security
- Windows Desktop SSO authentication module
- about / Windows Desktop SSO
- Windows NT authentication module
- about / Windows NT
X
- XACML
- about / Entitlements