Administration Manual
NOTE:
The rimsso.nsf file name is hard-coded in the Search the IAP Archive agent used
in IAP SSO. If you change the file name, be sure to change the file name in the agent.
See “Configuring The Search the IAP Archive agent”onpage99.
4. Specify the template for the HP EAs-D SSO database:
a. In the Se rver box, leave Local.
b. In the Template box, select HP EAs-D SSO,andthenclickOK.
5. Close the database.
Configuring the HP EA s-D SSO database and the Generate
SSO Tokens agent
Before configuring the HP EAs-D SSO database and the Generate SSO Token agent, select a primary
server for the EAs-D SSO application. The server does not have to be a mail server . However, it does
need to have replicas of the primary Domino Directories for all mail d omains par ticipating in the SSO
configuration.
1. Start the Domino Administrator client, and switch to an ID file that has ri ghts to create databases
and run unrestricted agents on the m ail servers.
2. In the Administrator client, open the server that you selected. Click the Server tab, select Server
Console, and enter the following command:
set config hprim_sso_append_notesdomain=1
NOTE:
This step is required if multiple Notes domains share one IAP. Otherwise, it is optional.
Note that this step improves SSO r esponse time.
3. In the Administrator client, perform the following steps to sign the HP EAs-D SSO d a tabase:
a. In the File menu, select Open Server and then select the ser ver.
b. In the Show me box, select Databases only.
c. Select the HP EAs-D SSO file.
d. With the file selected, right-cl ick and select Sign from the context menu.
e. Leave the default settings, and click OK.
4. In the Designer client, open HP EAs-D SSO.
5. In the File menu, select Database > Access Control, and then configure access for the user. Click
OK when you have finished.
•Usertype:Person
•Access:Manager
•SelecttheReplicate or copy documents check box.
•InRoles,selecttheRI M SSO Admin check box.
96
Configuring IAP single sign-on