Calyx RIM for Analytics 6.2 CHF 3 Installation Guide

SSO and Security Configuration

  1. Stop the WebFOCUS Express 80 Application Server service on the Calyx RIM for Analytics server.
  2. Delete the <install location>\WebFOCUS_Express80\tomcat\work\Catalina directory and all subdirectories.
  3. Delete the following directories from <install location>\WebFOCUS_Express80\WebFOCUS\webapps\ibi_help\WEB-INF\plugins:
    • com.ibi.help.admin
    • com.ibi.help.portal
    • com.ibi.help.ia
    • com.ibi.help.rc
  4. Extract the contents of WFConfig.zip. Copy the extracted WebFOCUS_Express80 folder to <install location> merging the copied folder with the existing WebFOCUS_Express80 folder.
    This will overwrite several files used for branding and customization.
  5. Start the WebFOCUS Express 80 Application Server service on the Calyx RIM for Analytics server.
  6. Verify that you can sign in to WebFOCUS Express by accessing one of the following URLs: http://127.0.0.1:25000/ibi_apps/ or http://localhost:25000/ibi_apps/
    Bookmark this address.
  7. Stop the WebFOCUS Express 80 Application Server service on the Calyx RIM for Analytics server.
  8. Using Notepad, open the file: <install location>\WebFOCUS_Express80\WebFOCUS\webapps\WebFocus\WEB-INF\web.xml. Add the following entries after the last </context-param> entry and before the first <filter> entry: 
    
<!-- BEGIN Single Sign On SSO Filter for WebFocus -->
               
<filter>
               
<filter-name>AuthenticationFilter</filter-name>
               
<filter-class>com.ibi.custom.filters.AuthenticationFilter</filter-class>
               
</filter>
               
<filter-mapping>
               
<filter-name>AuthenticationFilter</filter-name>
               
<url-pattern>/*</url-pattern>
               
</filter-mapping>
  9. Change <session-timeout>120</session-timeout> to <session-timeout>300</session-timeout>
    1. Click Save.
    2. Exit Notepad.
  10. Start the WebFOCUS Express 80 Application Server service on the Calyx RIM for Analytics server.
  11. Log into WebFOCUS as Express Administrator using the following link: http://hostname:25021/wc/bcstart.html
    • Replace hostname with the Calyx RIM for Analytics server name.
    • Bookmark this address.
  12. Select the Access Control tab and expand Access Control > Security Providers. Right-click on PTH<internal> (Primary) and choose Manage Users/Groups.
    Note: If the Access Control tab does not appear, log out and log back in as the express user.
  13. Add a new user called admin with the password of your choice - write it down. Make sure the password never expires option is selected.
    1. Click OK.
  14. Click Save and exit out of the user management window.
  15. On the Access Control tab, click Register User.
    1. Choose PTH<internal> security provider and enter admin for User ID, and click Next.
    2. Select the admin checkbox and click Register to register admin as a Server Administrator.
    3. Set Inherit Privileges to Server Administrator.
    4. Choose the admin checkbox and select the Register button to register admin as a Server Administrator.
  16. On the Access Control tab, select Security Providers, right click on CUSTOM, and choose New.
    1. Change the CUSTOM_PROVIDER name to ism (ensure this is lowercase)
    2. Specify cust_usersbygroup as _edaconf/catalog/custom/ism/wfsqlusers
    3. Specify cust_groupsbyuser as _edaconf/catalog/custom/ism/wfsqlgroups
    4. Change trust_ext from n to y
    5. Save and Activate the security provider
    6. Change the Status from Inactive to Secondary
    7. Click Save Provider’s Status
    8. On the Change Effective Security Provider screen, click Apply and Restart server