■ Editing an External Application
■ Storing External Application Credentials in the Single Sign-On Database
Adding an External Application
Clicking theAdd External Application link takes you to the Create External Application page. This page contains the following headings and fields:
Using the Interface to Deploy and Manage External Applications
Use the following steps to add an external application:
1. From the Administer External Applications page, selectAdd External Application.
The Create External Application page appears.
2. In theExternal Application Loginfield, enter the name of the external application and the URL to which the HTML login form is submitted. If you are using basic authentication, enter the protected URL.
3. If the application uses HTTP POST or HTTP GET authentication, in theUser Name/ID Field Name field, enter the term that identifies the user name or user ID Table 5–1 External Application Login
Field Description
Application Name Enter a name that identifies the external application. This is the default name for the external application.
Login URL Enter the URL to which the HTML login page for the external application is submitted for authentication. This, for example, is the login URL for Yahoo! Mail: http://login.yahoo.com/config/login?6p4f5s403j3h0
Username/ID Field Name Enter the term that identifies the user name or user ID field of the HTML login form for the application. You find this term by viewing the HTML source of the form. (See the example after the steps immediately following). This field is not applicable if you are using basic authentication.
Password Field Name Enter the term that identifies the password field of the HTML login form for the application. You find this term by viewing the HTML source of the form. (See the example after the steps immediately following). This field is not applicable if you are using basic authentication.
Table 5–2 Authentication Method
Field Description
Type of Authentication Use
Use the pulldown menu to select the form submission method for the application. This method specifies how message data is sent by the browser. You find this term by viewing the HTML source for the login form. Select one of the following three methods:
POST:
Posts data to the single sign-on server and submits login credentials within the body of the form.
GET:
Presents a page request to a server, submitting the login credentials as part of the login URL.
BASIC AUTHENTICATION:
Submits the login credentials in the application URL, which is protected by HTTP basic authentication
Table 5–3 Additional Fields
Field Description
Field Name Enter the name of any additional fields on the HTML login form that may require user input to log in. This field is not applicable if you are using basic authentication. Field Value Enter a default value for a corresponding field name value, if applicable. This field is
Using the Interface to Deploy and Manage External Applications
Configuring and Administering External Applications 5-3
field of the HTML login form. You can find the name by viewing the HTML source of the login form.
If the application uses the basic authentication method, theUser Name/ID Field Name field should be empty.
4. If the application uses HTTP POST or HTTP GET authentication, in thePassword Field Namefield, enter the term that identifies the password field of the
application. See the HTML source of the login form.
If the application uses the basic authentication method, thePassword Field Name
field should be empty.
5. In theAdditional Fieldsfield, enter the name and default values for any additional fields on the HTML login form that may require user input. If the application uses the basic authentication method, these fields should be empty.
6. Select theDisplay to User check box to allow the default value of an additional field to be changed by the user on the HTML login form.
7. ClickOK. The new external application appears under theEdit/Delete External Application heading on the Administer External Applications page, along with the other external applications.
8. Click the application link to test the login.
The following example shows the source of the values that are used for Yahoo! Mail. <form method=post action="http://login.yahoo.com/config/login?6p4f5s403j3h0" autocomplete=off name=a>
...
<td><input name=login size=20 maxlength=32></td> ....
<td><input name=passwd type=password size=20 maxlength=32></td> ...
<input type=checkbox name=".persistent" value="Y" >Remember my ID & password ...
</form>
The source provides values for the following:
■ Login URL:
http://login.yahoo.com/config/login?6p4f5s403j3h0 ■ Username/ID Field Name:login
■ Password Field Name:passwd ■ Type of Authentication Used:POST ■ Field Name:.persistent Y ■ Field Value:[off]