NAM's (Novell Access Manager) Form Fill policy provides Single Sign-on facility to webservers by prepopulating the fields in a form on first login and then save the information in the completed form to a secret store for subsequent logins.
Please refer to Novell Access Manager 3.1 SP3 Policy Guide for NAM's policy creation.
This article will help users to enable Single Sign-on to Novell ZENworks server using NAM's Form Fill Policy. This is tested on both LAG (Linux Access Gateway) and MAG (Multiplatform Access Gateway).
Prerequisites:
- NAM setup
- ZENworks setup
Steps:
- Open NAM's Administration Console, click Policies
- Select the policy container, then click New.
- Specify a display name for the policy and select Access Gateway: Form Fill for its type.
- (Optional) Specify a description for the Form Fill policy. This is useful if you plan to create multiple Form Fill policies.
- In the Actions section, click New, then select Form Fill. Refer the following screen shot.
- In the Form Selection section, select Form Name and specify form name as login in the text box.
- In the Fill Options section Input Field Name and enter username.
- Click on New in the Fill Options section, and enter password in Input Field Name Select password in Input Field Type and select LDAP Credentials:LDAP password as Input Field Value for Credential Profile.
To enable Single Sign-on using Form Fill policy to ZENworks server, it requires 2 more additional Input Fields with values.
- Click on New in the Fill Options section, and enter __EVENTTARGET in Input Field Name Select Hidden from the drop down list in Input Field Type and select Sting Constant from the drop down list of Input Field Value and enter the value as loginButton.
- Click on New in the Fill Options section, and enter __BACKCHECK in Input Field Name Select Hidden from the drop down list in Input Field Type and select Sting Constant from the drop down list of Input Field Value and enter the value as false.
- In the Submit Options section, enable Auto Submit to submit the form as soon as all the values are filled in.
- Click OK.
- On the Policies page, click Apply Changes.
Note: In the Fill Options section, the hidden fields __EVENTTARGET, __BACKCHECK are not entered then user will experience the looping issue. This solution is only to enable Single Sign-on using NAM's Form Fill Policy to Novell ZENworks server. This will not work for other web servers.