Hi,
we are trying to configure a Single Sign On (SSO) between WebSphere Application Server 6.1.0.17 and Domino 6.5.6.
Following the Infocenter we have doing these:
-
in was console:
-
enabled security
-
enabled LDAP “Standalone LDAP registry” with these settings:
> type LDAP = IBM Lotus Domino > Host = portale.hondaauto.it > Port = 389 > Base Distinguish Name = ou=USR,o=EXTHONDAHAI > Search Timeout = 120 -
restart was and test LDAP => work OK
-
enabled SSO in was with domain hondaauto.it
-
export LTPA token which contains the following:
com.ibm.websphere.CreationDate=Tue Nov 11 12:53:37 CET 2008
com.ibm.websphere.ltpa.version=1.0
com.ibm.websphere.ltpa.3DESKey=CTkl9BZSNgnXD0yE5lZ9+iUHzqMedjhUKNtT1HhR+3E=
com.ibm.websphere.CreationHost=was
com.ibm.websphere.ltpa.PrivateKey=XuZlfXAxX/G48…
com.ibm.websphere.ltpa.Realm=portale.hondaauto.it:389
com.ibm.websphere.ltpa.PublicKey=ALi7kdFb…
-
-
in Domino Administrator:
-
setted in HTTP Authentication “Name and Password”=yes
-
in Internet Protocols → Domino Web Engine → “Multiple Server (SSO)”
-
in Security → Internet Access → “More name variation with lower security”
-
created Web SSO Document with:
-
DNS domain= hondaauto.it
-
imported ltpa keys from websphere
-
LDAP real = portale.hondaauto.it:389
-
…
-
-
The problem is:
when we restart Domino HTTP we don’t see
“HTTP: Succesfully loaded Web SSO Configuration”
We also enabled in notes.ini:
WebSess_Verbose_Trace=1
DEBUG_SSO_TRACE_LEVEL=2
restarted domino
and we noticed an error like this:
“…Invalid SSO token…”
Any suggestion?
Thanks in advance,
Alessio Alessandretti