Why won't the configuration wizard find SuSE10 native Apache 2.2?
search cancel

Why won't the configuration wizard find SuSE10 native Apache 2.2?

book

Article ID: 51566

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

Description:

As of this writing there is a known issue detecting Apache 2.2.

Solution:

In order to integrate with this version of apache (2.2.3) please select Apache 2.0 and then push through with the manual steps to find everything.

To integrate do the following after the wizard has run:

  • Change the module line from:
    LoadModule sm_module "/opt/netegrity/webagent/bin/libmod_sm20.so"

    to:
    LoadModule sm_module "/opt/netegrity/webagent/bin/libmod_sm22.so"

    with the path modified to your location.

  • Find the following section:
    # forbid access to the entire filesystem by default## Options None# AllowOverride None# Order deny,allow# Deny from all#</Directory>
    and insert this before it:
    Alias /siteminderagent/pwcgi/ "<webagent-install-root>/pw/"<Directory "<webagent-install-root>/pw/">Options Indexes MultiViews ExecCGIAllowOverride NoneAllow from all</Directory>Alias /siteminderagent/pw/ "<webagent-install-root>/pw/"<Directory "<webagent-install-root>/pw/">Options Indexes MultiViews ExecCGIAllowOverride NoneAllow from all</Directory>Alias /siteminderagent/ "<webagent-install-root>/samples/"<Directory "<webagent-install-root>/samples/">Options Indexes MultiViews ExecCGIAllowOverride NoneAllow from all</Directory>
    To enable certificates, also include these four Aliases as well:
    Alias /siteminderagent/nocert/[0-9]+/(.*) "<webagent-install-root>/$1"<Directory "<webagent-install-root>/$1">Options Indexes MultiViewsAllowOverride NoneOrder allow,denyAllow from all</Directory>  
    Alias /siteminderagent/cert/[0-9]+/(.*) "<webagent-install-root>/$1"<Directory "<webagent-install-root>/$1">Options Indexes MultiViewsAllowOverride NoneOrder allow,denyAllow from all</Directory>
    Alias /siteminderagent/certoptional/[0-9]+/(.*) "<webagent-install-root>/$1"<Directory "<webagent-install-root>/$1">Options Indexes MultiViewsAllowOverride NoneOrder allow,denyAllow from all</Directory>
    Alias /siteminderagent/certoptional/ "<webagent-install-root>/samples/"<Directory "<webagent-install-root>/samples/">Options Indexes MultiViewsAllowOverride NoneOrder allow,denyAllow from all</Directory>
    where the <webagent-install-root> is modified to your location (for example: /opt/netegrity/webagent).

Note: In the Certs we do need to do dsome matching, thus the regexp is there, For write up on how this works please see: http://httpd.apache.org/docs/2.2/mod/mod_alias.html#aliasmatch.

The server should then start as long as the environment is sourced correctly. The agent should also protect as any agent would. Do note however that advanced authentication such as certificates are only enabled if you added the additional 4 aliases.

Environment

Release:
Component: SMAPC
Powered by Wolken Software