Retrieve the WebSphere LTPA key for use with Domino

 

+

Search Tips   |   Advanced Search

 

If you have already retrieved the WebSphere LTPA key for another application, for example, IBM Tivoli Access Manager, or Lotus Sametime, you can skip this procedure.

Perform the following steps:

  1. From the WAS console, go to...

    • WAS v6.1

        Security | Secure administration, applications, and infrastructure | Web security | Single sign-on (SSO)

    • WAS v7.0:

  2. Enter the fully qualified domain name and then click OK.

  3. Click Save to save the changes to the master configuration.

  4. Do the following depending on your WAS version:

    • WAS v6.1

      Click Authentication mechanisms and expiration.

    • WAS v7.0

      Under Authentication mechanisms and expiration, click LTPA.

  5. Type the password in the Password and Confirm password fields.

  6. Type the name of your file in the Fully qualified key file name field.

  7. Click Export Keys. The key is exported to the wp_profile directory.

  8. To disable automatic LTPA key generation, complete the appropriate steps depending on your WAS version:

    Version Steps
    WAS v6.1

    1. Select Key generation - Key set groups.

    2. Select NodeLTPAKeySetGroup.

    3. Deselect the Key generation - Automatically generate keys option.

    WAS v7.0

    1. Select Key set groups.

    2. Select NodeLTPAKeySetGroup.

    3. Deselect the Key generation - Automatically generate keys option.

  9. Click...

      OK | Save

    ...and log out from the administrative console.

  10. Copy the key file that was created during the export process to a location that is accessible to the Lotus Domino server.


Parent topic:

Use LTPA keys to configure single sign-on


Related tasks


Configure single sign-on