Unwired Accelerator includes a Remedy AR system security provider, which implements authentication and role-based access checks against a Remedy AR system. The CSI Remedy AR system security provider consists of an authentication provider and role-check based authorizer:
com.sybase.security.remedy.RemedyLoginModule – provides authentication services against the Remedy AR server.
com.sybase.security.core.RoleCheckAuthorizer – provides authorization services using a CSI core class.
The CSI Remedy AR system security provider does not support any certificate authentication capability. A session is associated with a user once he or she logs in to the Remedy AR system. The length of the user’s session is determined by the timeout setting configured in the Remedy AR system. When the session exceeds this time, the user must log in again.
To configure the CSI Remedy AR system security provider:
Copy the arapi63.jar file from the Remedy AR system installation to the Unwired Accelerator directory %SYBASE%\jdk1.5.0_10\jre\bin; and add arapi63.jar to the CLASSPATH environment variable.
Add these Remedy files to the PATH environment variable: arapi63.dll, arjni63.dll, arrpc63.dll, arutl63.dll, icudt28l.dll, icuin28.dll and icuuc28.dll. Alternatively copy the files to %SYBASE%\jdk1.5.0_10\jre\bin.
Modify the default.xml file,
located in %SYBASE%\tomcat\conf\CSI. Search
for RemedyLoginModule,
to find the Remedy AR system section:
... <config:authenticationProvider name= "com.sybase.security.remedy.RemedyLoginModule" controlFlag="optional" > <config:options name="ServerName" value="localhost" /> <config:options name="ServerPort" value="0" /> <config:options name="UserLocale" value="" /> <config:options name="AllowGuest" value="false" /> </config:authenticationProvider> <config:provider name="com.sybase.security.portaldb.PortalDBAttributer" type="attributer" /> <config:provider name="com.sybase.security.core.RoleCheckAuthorizer" type="authorizer" /> <config:provider name="com.sybase.security.helpers.EverybodyRoleAuthorizer" type="authorizer" /> ...
See the UA 8.0 Installation Guide for information about configuring security providers in default.xml, and for using stacked security providers. See the sections that follow for information about the Remedy AR system security provider.
Table 12 defines the configuration options. Enable any of the options by adding the option name and value to default.xml. You must add new option definitions within the authenticationProvider definition; that is, between the following two lines:
<config:authenticationProvider name="com.sybase.security.remedy.RemedyLoginModule"> ... </config:authenticationProvider>
Configuration option |
Default value |
Description |
|---|---|---|
ServerName |
localhost |
Remedy AR system server host name. |
ServerPort |
0 |
Remedy AR system server port number. |
UserLocale |
" " (blank) |
Remedy AR system UserLocale. |
AllowGuest |
false |
Indicates whether Remedy AR system allows a user as a guest. If set to true, an authenticated user can access Remedy AR; if set to false, an authenticated user receives error messages and cannot access Remedy AR. |
Remedy AR system role-based authorization uses the core RoleCheckAuthorizer. No Remedy-specific authorization provider is necessary.
For an authenticated user, Remedy APIs are invoked to return groups to which the user belongs. The CSI Remedy security provider relies on user group membership to compute user roles.
