Retrieve the WebSphere LTPA key

 

+
Search Tips   |   Advanced Search

 

You retrieve the WebSphere LTPA key from the portal server so that we can use the key on the IBM Lotus Domino server that runs the Domino Extended Product for which you are configuring single sign-on (for example, IBM Lotus QuickPlace or IBM Lotus Sametime, or Lotus Domino on a messaging/application server).

If you have already retrieved the WebSphere LTPA key for another application (for example, IBM Tivoli Access Manager for e-business, Lotus QuickPlace, or Lotus Sametime ) we can skip this procedure.

If the release of IBM WAS configured in the portal site is 6.0.2.9 or later, before retrieving the LTPA key for single sign-on, make sure the Web inbound security attribute propagation option is disabled as described in the procedure below. For details on this feature, see Implementing single signon to minimize Web user authentications, as well as the section on Horizontal propagation in Security attribute propagation, both in the WebSphere Application Server Information center. Perform the following steps:

  1. On the WebSphere Application Server, start the administrative console and log in.

  2. Select...

    Security | Global security | Authentication | Authentication mechanisms | LTPA | Additional properties | Single signon (SSO)

  3. Make sure Web inbound security attribute propagation is deselected. If make a change to it, click Apply

  4. Click the LTPA link to return to the Configuration tab.

  5. Type a password in the Password field and enter a name, path and file name in the Key File Name field.

    Make a note of the password; you will need it during the next SSO task when you import the LTPA key into the Lotus Domino server.

  6. Click the Export Keys button.

  7. If you made changes, click Save to apply the changes to the master configuration, then Save again on the next screen.

  8. Log out from the administrative console.

  9. Copy the key file that you created to a location that is accessible to the Lotus Domino server.

 

Parent Topic

Configuring single sign-on between WebSphere Portal and Lotus Domino

 

Next topic:

Import the WebSphere LTPA key into Lotus Domino