Description:
This technical document outlines the procedure to configure Service Catalog for NTLM (single sign-on).
Solution:
In order to configure Catalog and Tomcat for NTLM:
<Please see attached file for image>
<Please see attached file for image>
<!-- USM NtlmAuthFilter --> <!-- Uncomment <filter> <filter-name>NtlmAuthFilter</filter-name> <filter-class>com.ca.usm.httpfilter.NtlmAuthenticationFilter</filter-class> <init-param> <param-name>eiamBackendHost</param-name> <param-value>lod0026</param-value> </init-param> <init-param> <param-name>eiamApplication</param-name> <param-value>Service Delivery</param-value> </init-param> <init-param> <param-name>eiamCertFile</param-name> <param-value>C:/Program Files/CA/Unicenter Service Delivery/USMcertfile.p12</param-value> </init-param> <init-param> <param-name>eiamMaskedPassword</param-name> <param-value>BQ5waHJzXjgJHAUDeGMBCgYAfQV9JhUOZ3FzcBYYM3VTAFIVDndXZnt0JBc=</param-value> </init-param> <init-param> <param-name>bypassNodes</param-name> <param-value>icguinode.login,icguinode.logout,iclaunchpad.launch, icguinode.changepwdlockout,icguinode.lockout</param-value> </init-param> <init-param> <param-name>failbackLoginPage</param-name> <param-value>wpf?Node=icguinode.login</param-value> </init-param> <init-param> <param-name>defaultLaunchNode</param-name> <param-value>iclaunchpad.launch</param-value> </init-param> </filter> --> Uncomment <!-- USM NtlmAuthFilter - mapping --> <!-- Uncomment <filter-mapping> <filter-name>NtlmAuthFilter</filter-name> <url-pattern>/wpf/*</url-pattern> </filter-mapping> <filter-mapping> <filter-name>NtlmAuthFilter</filter-name> <url-pattern>/uslm/*</url-pattern> </filter-mapping> <filter-mapping> <filter-name>NtlmAuthFilter</filter-name> <url-pattern>/assure/*</url-pattern> </filter-mapping> <filter-mapping> <filter-name>NtlmAuthFilter</filter-name> <url-pattern>/documents/*</url-pattern> </filter-mapping> --> Uncomment