Configure SSO between WebSphere Portal and Lotus Quickr services for Domino

Configure single sign-on between IBM WebSphere Portal and IBM Lotus Quickr by retrieving the LTPA tokens included with WebSphere Portal and importing them to the Lotus Quickr server.

• Retrieve the WebSphere LTPA key for use with Lotus Quickr
  You retrieve the WebSphere LTPA key from the IBM WebSphere Portal server so that we can use the key on the IBM Lotus Quickr server for which we are configuring single sign-on.
• Import the WebSphere LTPA key into Lotus Quickr
  Import the WebSphere LTPA kethat you retrieved from the IBM WebSphere Portal server into a Web SSO configuration document so that the same token can be used for single sign-on to the IBM Lotus Quickr server and the WebSphere Portal server.
• Enable single sign-on between Quickr and portal servers
  When you enable multi-server SSO authentication between the IBM Lotus Quickr and IBM WebSphere Portal servers, Lotus Quickr can authenticate users in the Web browser by examining LTPA tokens.
• Increasing SSO security by preventing anonymous access to HTML files
  We can modify notes.ini to prevent anonymous access to files in the HTML directory. The NoWebFileSystemACLs parameter, when set equal to 1 in notes.ini, prevents anonymous access to files served up in the HTML directory on the IBM Lotus Domino server, increasing security and reliance on the single sign-on method of authentication.
• Additional steps if WebSphere Portal and Lotus Quickr authenticate with different LDAP directories
  If IBM WebSphere Portal authenticates against a non-Domino LDAP directory and IBM Lotus Quickr authenticates against Domino LDAP, follow the steps described here to synchronize users' names in the directories.
• Test single sign-on between WebSphere Portal and Lotus Quickr
  Use the web browser to go to a web page where we can test single sign-on between the portal server and the IBM Lotus Quickr server.

Parent: Integrate with Lotus Quickr