Presentation is loading. Please wait.

Presentation is loading. Please wait.

Liferay, SSO and LDAP - Integration Copyright © 2000-2007 Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Liferay, SSO and LDAP - Integration Copyright © 2000-2007 Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without."— Presentation transcript:

1 Liferay, SSO and LDAP - Integration Copyright © 2000-2007 Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without written permission from Liferay, Inc.

2 Objectives Integration – Liferay, LDAP and SSO 1.Overview 2.Demo 3.CAS-SSO for Liferay

3 Overview Liferay Alfresco LDAP ApacheDS SSO CAS Authentication SSO Portlet Apps SSO Web client Web services

4 Real Integration See real integration – Demo Then do exercise –CAS – SSO, LDAP and Liferay - integration Set tomcat as linked source in ext project -In Resource perspective, edit.classpath; -Remove “ ” -Go to Java perspective Check Java home at C:\Java or C:\Training\Java; not at C:\Program Files\Java

5 CAS - SSO Install CAS-SSO server Download CAS SSO (from copy) URL: http://docs.cignex.com Login as admin/admin Find: cas-web.war Click it – download Copy the war file and paste it to the Tomcat webapps directory. Go to the Tomcat conf/server.xml file and uncomment the SSL section to open port 8443. See next page.

6 CAS - SSO

7 Check Point Tomcat conf/server.xml …… ……

8 CAS - SSO Install CAS-SSO client Get the Yale CAS Client 2.0.11 (from copy) Casclient.jar Copy the file; Go to the lib file in Tomcat (webapps\ROOT\WEB_INF\lib) and paste the casclient.jar file to replace the existing one. In the command prompt go to Tomcat webapps/ROOT directory. Generate the SSL cert, enter: keytool -genkey -alias tomcat -keypass changeit -keyalg RSA

9 CAS - SSO Enter keystore password: changeit What is your first and last name? [Unknown]: localhost What is the name of your organizational unit? [Unknown]: What is the name of your organization? [Unknown]: What is the name of your City or Locality? [Unknown]: What is the name of your State or Province? [Unknown]: What is the two-letter country code for this unit? [Unknown]: Is CN=localhost, OU=Unknown, O=Unknown, L=Unknown, ST=Unknown, C=Unknown correct? [no]: yes Enter localhost for the first name and last name Enter changeit for the password. Enter yes for the list.

10 CAS - SSO Export the cert you generated from your personal keystore: keytool -export -alias tomcat -keypass changeit -file server.cert Enter changeit for the password. Import the cert into Java's keystore: keytool -import -alias tomcat -file server.cert -keypass changeit -keystore %JAVA_HOME%/jre/lib/security/cacerts Enter changeit for the password. Enter yes to trust this certificate Check point “ Certificate was added to keystore ”

11 CAS - SSO Set up Liferay Portal Navigate to the classes file in Tomcat (webapps\ROOT\WEB_INF\classes). Create system-ext.properties. Open system-ext.properties and enter: com.liferay.filters.sso.cas.CASFilter=true Save. Open portal-ext.properties and enter: #auto.login.hooks=com.liferay.portal.security.auth.BasicAutoLogin auto.login.hooks=com.liferay.portal.security.auth.BasicAutoLogin,com.lifera y.portal.security.auth.CASAutoLogin Save.

12 Simple Codes Tomcat webapps/ROOT/WEB-INF/web.xml CAS Filter com.liferay.filters.sso.cas.CASFilter logout_url https://localhost:8443/cas-web/logout edu.yale.its.tp.cas.client.filter.loginUrl https://localhost:8443/cas-web/login edu.yale.its.tp.cas.client.filter.validateUrl https://localhost:8443/cas-web/proxyValidate edu.yale.its.tp.cas.client.filter.serviceUrl http://localhost:8080/c/portal/login

13 Simple Codes Tomcat webapps/ROOT/WEB-INF/web.xml CAS Filter /c/portal/login …… Auto Login Filter /c/portal/login FORWARD INCLUDE REQUEST

14 CAS - SSO Test – Liferay and SSO Shut down tomcat if it is running Restart tomcat Make sure you try it out on Firefox and Opera first, then IE. In CAS, input (authenticating with LDAP server) Id: “liferay.com.1” Password: “liferay”

15 Check Points Rebuild Delete the tomcat alias from the keystore so you can start fresh. –keytool -delete -alias tomcat -keystore %JAVA_HOME%/jre/lib/security/cacerts –keytool -delete -alias tomcat -file server.cert Enter changeit for the password. Repeat - Generate the SSL cert

16 CAS - SSO Congratulation! Q&A

17 Revision History Jonas Yuan06/07/07Created for Liferay 4.2.2 Jonas Yuan06/11/07Change java home

Download ppt "Liferay, SSO and LDAP - Integration Copyright © 2000-2007 Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without."

Similar presentations

Struts Portlet Copyright © 2000-2006 Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without written permission.

Struts Portlet Copyright © Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without written permission.
Struts Portlet Adding an Action Copyright © 2000-2006 Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without.

Struts Portlet Adding an Action Copyright © Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without.
Web Services Copyright © 2000-2007 Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without written permission.

Web Services Copyright © Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without written permission.
JSF Portlet Backing Beans and UI Components Copyright © 2000-2007 Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in.

JSF Portlet Backing Beans and UI Components Copyright © Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in.
© 2009 GroundWork Open Source, Inc. PROPRIETARY INFORMATION: Information contained herein is not for use or disclosure outside of GroundWork Open Source,

© 2009 GroundWork Open Source, Inc. PROPRIETARY INFORMATION: Information contained herein is not for use or disclosure outside of GroundWork Open Source,
Developing in CAS. Why? As distributed you edit CAS 3 with Eclipse and build with Maven 2 – Best Practice for Release Engineering – Difficult edit-debug.

Developing in CAS. Why? As distributed you edit CAS 3 with Eclipse and build with Maven 2 – Best Practice for Release Engineering – Difficult edit-debug.
SSL (Secure Socket Layer)

SSL (Secure Socket Layer)
How to Logon Oracle Collaboration Suite and change password? STEP 1 Launch https://ocs.aecom.yu.edu.

How to Logon Oracle Collaboration Suite and change password? STEP 1 Launch
XMAS installation instructions Windows Version: 1.0 4/22/2008.

XMAS installation instructions Windows Version: 1.0 4/22/2008.
SSL Man in the Middle Proxy Srinivas Inguva Dan Boneh Ian Baker Stanford University.

SSL Man in the Middle Proxy Srinivas Inguva Dan Boneh Ian Baker Stanford University.
Certificates, SSL and IPsec Ahmed Muaydh Sara Bin Saif Shi-Jey Chou Advisor:Dr. Leszek Lilien.

Certificates, SSL and IPsec Ahmed Muaydh Sara Bin Saif Shi-Jey Chou Advisor:Dr. Leszek Lilien.
Introduction to Liferay Copyright © 2000-2007 Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without written.

Introduction to Liferay Copyright © Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without written.
Struts Portlet Database Interaction Copyright © 2000-2006 Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without.

Struts Portlet Database Interaction Copyright © Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without.
Basic Portlet Copyright © 2000-2006 Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without written permission.

Basic Portlet Copyright © Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without written permission.
JSF Portlet Copyright © 2000-2007 Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without written permission.

JSF Portlet Copyright © Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without written permission.
Computers as an Expressive Medium Lab 8: jar signing, debugging Mayhew Seavey.

Computers as an Expressive Medium Lab 8: jar signing, debugging Mayhew Seavey.
APACHE SERVER By Innovationframes.com »

APACHE SERVER By Innovationframes.com »
TUTORIAL (1) Software installation Written by: Eng. Ahmed Mohamed Abdel Ghafar, Edited by Eng. Muhammed Hammad, Eng. Hamdy Soltan & Eng. Osama Talaat.

TUTORIAL (1) Software installation Written by: Eng. Ahmed Mohamed Abdel Ghafar, Edited by Eng. Muhammed Hammad, Eng. Hamdy Soltan & Eng. Osama Talaat.
Themes & Layout Tutorial Copyright © 2000-2006 Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without written.

Themes & Layout Tutorial Copyright © Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without written.
1 Lecture 5 George Koutsogiannakis/ Summer 2011 CS441 CURRENT TOPICS IN PROGRAMMING LANGUAGES.

1 Lecture 5 George Koutsogiannakis/ Summer 2011 CS441 CURRENT TOPICS IN PROGRAMMING LANGUAGES.

Similar presentations

Ads by Google