Blog

This blog is intended for software system engineers, architects and managers or people generally interested in development, testing and integration of software systems. It is part of profiq’s community effort that has the objective of sharing knowledge and ideas about software system integration, testing and development. In addition to this technical content, we share updates about life at profiq.

OpenAM Session Upgrade: Overview

Posted 10 years ago by Gabor Puhalla

SSO authentication introduces some technical challenges besides providing obvious benefits. Imagine for example that you need to assign different types or levels of authentication to different resources or different actions within a domain. E.g. you allow users to view information, if they successfully authenticate using user name and password, while you may require them to […]

Read article

A simple OpenAM realm scenario

Posted 10 years ago by Nemanja Lukic

A Realm is an OpenAM concept and a feature which is used to group and organise the information and configuration parameters. OpenAM has a top level realm which contains all other, user-defined, realms. We will try here to demonstrate the realm functionality on a simple but practical scenario where realms will be used to separate […]

Read article

Certificate based authentication with OpenAM 10 and Tomcat 7

Posted 11 years ago by Nemanja Lukic

Although my use case for certificate based authentication is pretty basic, the existing documentation for Access Manager/OpenSSO/OpenAM is somewhat scarce and requires gathering information from various, often unrelated sources. For that reason, I have summarised the process in this article.

Read article

Automated installation and configuration of OpenAM

Posted 11 years ago by skatuscak

This blog is about automation of OpenAM architecture installation and configuration. As I recently automated architecture from my previous article [1] (simplified without using SSL), I would like to say something about issues I met.

Read article

How to upgrade OpenAM

Posted 11 years ago by skatuscak

In my previous articles [1] and [2] I explained how to install simple OpenAM architecture. Now I wrote one more article related to this architecture. This article provides detailed steps how to do an upgrade of this architecture from OpenAM 9.0 to OpenAM 9.5.4.

Read article

How to deploy OpenAM with DAUI using SSL

Posted 11 years ago by skatuscak

In my previous article “How to deploy OpenAM with DAUI”  I wrote down steps how to install complete architecture where DAUI is configured with OpenAM. To keep it simple, I used only plain non-encrypted communication between individual components, however in the real world, many deployments require some more security and encrypted cryptography is a basic requirement. […]

Read article

How to deploy OpenAM with DAUI

Posted 11 years ago by skatuscak

Internet is full of tutorials and steps how to install and configure individual tools, but sometimes there are required steps to connect these tutorials together. Sure, there are some deployment guides for complex architectures, but they are typically very complex. The goal of this article is to provide complete, but simple steps how to install […]

Read article

Maven archetype for OpenDJ plugin development

Posted 11 years ago by Nemanja Lukic

We have previously written about the plugin development for OpenDJ based on the example-plugin.zip which comes with the binary distribution. However, as OpenDJ is evolving and slowly migrating to Maven, on the initiative of the ForgeRock team we have come up with the Maven archetype to make the plugin development easier and more developer friendly.

Read article

OpenDJ (aka OpenDS) integration series of articles

Posted 11 years ago by Nemanja Lukic

Sun Microsystems merger with Oracle has created a gap not only in the identity market but also in the continuity of the Sun identity offerings. Once a market leader (and for the moment being still is), Sun Java System Directory Server (also known under many other marketing names such as SunONE and iPlanet) has uncertain […]

Read article