Free trial

Blog

This blog is intended for software system engineers, architects and managers or people generally interested in development, testing and integration of software systems. It is part of profiq’s community effort that has the objective of sharing knowledge and ideas about software system integration, testing and development. In addition to this technical content, we share updates about life at profiq.

Tags

OpenAM Session Upgrade: Overview

SSO authentication introduces some technical challenges besides providing obvious benefits. Imagine for example that you need to assign different types or levels of authentication to different resources or different actions within a domain. E.g. you allow users to view information, if they successfully authenticate using user name and password, while you may require them to insert a special security code besides user name and password, if they want to start editing. Or you allow users to access general content using user name and password, while accessing specific content (e.g. admin…

forgerock j2ee openam sso system engineering

A simple OpenAM realm scenario

A Realm is an OpenAM concept and a feature which is used to group and organise the information and configuration parameters. OpenAM has a top level realm which contains all other, user-defined, realms. We will try here to demonstrate the realm functionality on a simple but practical scenario where realms will be used to separate administration entities. Let's imagine a hypothetical service provider company (Example.com) which has a centralised directory for all of it’s clients, and a separate branch per client: suffix: dc=example,dc=com Client1: o=client1,dc=example,dc=com Client2: o=client2,dc=example,dc=com Example.com would like to…

forgerock ldap ldif openam opendj realms tomcat

How to upgrade OpenAM

In my previous articles [1] and [2] I explained how to install simple OpenAM architecture. Now I wrote one more article related to this architecture. This article provides detailed steps how to do an upgrade of this architecture from OpenAM 9.0 to OpenAM 9.5.4. (more…)

daui forgerock openam opendj upgrade testing

How to deploy OpenAM with DAUI using SSL

In my previous article "How to deploy OpenAM with DAUI"  I wrote down steps how to install complete architecture where DAUI is configured with OpenAM. To keep it simple, I used only plain non-encrypted communication between individual components, however in the real world, many deployments require some more security and encrypted cryptography is a basic requirement. This article is based on previous one and it adds steps to install full architecture with SSL encryption. (more…)

agent daui forgerock openam opendj security system testing

How to deploy OpenAM with DAUI

Internet is full of tutorials and steps how to install and configure individual tools, but sometimes there are required steps to connect these tutorials together. Sure, there are some deployment guides for complex architectures, but they are typically very complex. The goal of this article is to provide complete, but simple steps how to install and configure ForgeRock's OpenAM access manager and DAUI (Distributed Authentication User Interface) for authentication. This solution uses also ForgeRock's OpenDJ directory server as configuration and user data store. (more…)

daui forgerock openam opendj system testing

Maven archetype for OpenDJ plugin development

We have previously written about the plugin development for OpenDJ based on the example-plugin.zip which comes with the binary distribution. However, as OpenDJ is evolving and slowly migrating to Maven, on the initiative of the ForgeRock team we have come up with the Maven archetype to make the plugin development easier and more developer friendly. (more…)

forgerock idm java ldap opendj

OpenDJ (aka OpenDS) integration series of articles

Sun Microsystems merger with Oracle has created a gap not only in the identity market but also in the continuity of the Sun identity offerings. Once a market leader (and for the moment being still is), Sun Java System Directory Server (also known under many other marketing names such as SunONE and iPlanet) has uncertain future as the new pricing model (i.e. it is not getting any cheaper) puts the customers in a situation to look for the alternatives. What Sun thought of being it's own open source alternative, OpenDS,…

dsee forgerock idm ldap opendj opends oracle sun microsystems