Getting Started  Single Sign On (SSO) with Serena Business Manager (SBM)  Configuring Tomcat for SSO

Configuring Tomcat for SSO

You must have the Serena Release Automation server installed on the same machine as the Serena Common Tomcat.

  1. On the Serena Release Automation server, stop the Common Tools Service.
  2. Go to the Serena\common\tomcat\6.0\alfssogatekeeper\conf directory.
  3. Modify the file gatekeeper-core-config.xml changing the following parameters:
    • <parameter name="SecurityTokenService" Type="xsd:anyURI">HTTP://<host>:<port>/TokenService/services/Trust<parameter>
    • <parameter name="SecurityTokenServiceExternal" Type="xsd:anyURI">HTTP://<host<:port>/TokenService/services/Trust</parameter>
    • <parameter name="FederationServerURL" Type="xsd:anyURI">HTTP://<host>:port>/ALFSSOLogin/login</parameter>
  4. Modify the gatekeeper-services-config.xml file as follows: 
     - <GatekeeperProtectionControl> - <ProtectedURIs>
 ...
 <URIMatcher requestURI="/serena_ra/*" /> 
 ...
 </ProtectedURIs>
  5. Go to the directory: \Serena\common\tomcat\6.0\webapps\serena_ra\WEB-INF\
  6. In the web.xml file, enable the SSO filters by uncommenting the Serena SSO Gatekeeper Filter Configuration section: 
    - <filter> 
  <filter-name>ALFSSOGatekeeperFilter</filter-name> 
  <filter-class>org.eclipse.alf.security.sso.server.gatekeeper.filterloader.
GatekeeperFilterLoader</filter-class>
- <init-param>
  <param-name>gatekeeper.enabled</param-name> 
  <param-value>true</param-value> 
  </init-param>
- <init-param>
  <param-name>gatekeeper.config.filename</param-name> 
  <param-value>${catalina.home}/alfssogatekeeper/conf/
gatekeeper-services-config.xml</param-value> 
  </init-param>
- <init-param>
  <param-name>gatekeeper.lib.dir</param-name> 
  <param-value>${catalina.home}/alfssogatekeeper/lib</param-value> 
  </init-param>
- <init-param>
  <param-name>gatekeeper.root.dir</param-name> 
  <param-value>${catalina.home}/alfssogatekeeper</param-value> 
  </init-param>
- <init-param>
  <param-name>gatekeeper.log4j.use-repo-selector</param-name> 
  <param-value>true</param-value> 
  </init-param>
- <init-param>
  <param-name>gatekeeper.log4j.create-new-repo</param-name> 
  <param-value>true</param-value> 
  </init-param>
- <init-param>
  <param-name>gatekeeper.log4j.properties.filename</param-name> 
  <param-value>${catalina.home}/alfssogatekeeper/conf/log4j.properties
</param-value> 
  </init-param>
  </filter>
- <filter-mapping>
  <filter-name>ALFSSOGatekeeperFilter</filter-name> 
  <url-pattern>/*</url-pattern> 
  </filter-mapping>
  7. Run Common Tools and verify the following URL: http://<host>:<CT_port>/serena_ra/, where CT_port is the Common Tools http port. The SBM Single Sign-On page should display.
  8. Enter your Username and Password to access Serena Release Automation.

    See also, Single Sign Out.

Copyright © 2012–2013 Serena Software, Inc. All rights reserved.