Searching the Help
To search for information in the Help, type a word or phrase in the Search box. When you enter a group of words, OR is inferred. You can use Boolean operators to refine your search.
Results returned are case insensitive. However, results ranking takes case into account and assigns higher scores to case matches. Therefore, a search for "cats" followed by a search for "Cats" would return the same number of Help topics, but the order in which the topics are listed would be different.
Words and Phrases
| Search for | Example | Results |
|---|---|---|
| A single word | cat
|
Topics that contain the word "cat". You will also find its grammatical variations, such as "cats". |
|
A phrase. You can specify that the search results contain a specific phrase. |
"cat food" (quotation marks) |
Topics that contain the literal phrase "cat food" and all its grammatical variations. Without the quotation marks, the query is equivalent to specifying an OR operator, which finds topics with one of the individual words instead of the phrase. |
Using Boolean Operators
| Search for | Operator | Example |
|---|---|---|
|
Two or more words in the same topic |
|
|
| Either word in a topic |
|
|
| Topics that do not contain a specific word or phrase |
|
|
| Topics that contain one string and do not contain another | ^ (caret) |
cat ^ mouse
|
| A combination of search types | ( ) parentheses |
|
Example: Configuring the web server for trusted sign-on
To enable trusted sign-on for web tier clients, you must install and configure a web server (for example, Microsoft Internet Information Services (IIS) or Apache), which receives the user information from the client through the browser, and passes the user name and domain name to the web application server.
Note The following steps assume that the web server and web application server configurations are already established, and that the only necessary changes to the configurations of these servers are those described below.
Apache configuration changes
Note The mod_authnz_sspi.so module is available only for Windows; if Apache is installed on a UNIX operating system, it may be necessary to create a custom class to perform trusted sign-on.
- Obtain the
mod_authnz_sspimodule here. - Extract the downloaded .zip file, and then add the
mod_authnz_sspi.sofile to the/modulesdirectory and thesspipkgs.exefile to the/binin the Apache installation. - Add the following lines to the bottom of the
httpd.conffile to allow for trusted sign-on:
# Load mod_authnz_sspi module LoadModule authnz_sspi_module modules/mod_authnz_sspi.so <Location "/webtier"> AuthName "ServiceManager Webtier" loglevel debug AuthType SSPI SSPIAuth On SSPIAuthoritative On require valid-user SSPIOfferBasic Off # SSPIBasicPreferred # SSPIUsernameCase lower #SSPIDomain IN SSPIOmitDomain on Options None SSPIPerRequestAuth On </Location> # End of mod_authnz_sspi.
The name within the Location tag needs to be the path the user enters to open the Service Manager web client web site; usually the name is taken from the .war file of the web tier. In a configuration with multiple domains, comment out the SSPIDomain parameter by adding a crosshatch character (#) in front of the line.
IIS configuration changes
-
Download the Apache jk2 connector binary from jakarta.apache.org to your web application server's home directory (in this example, Tomcat home directory), and make sure the following files are added to the following folders:
- <Tomcat_home>\conf folder:
jakarta isapirewrite.reg,jk2.properties,workers2.properties
- <Tomcat_home>\bin folder:
isapi_redirector2.dll
- <Tomcat_home>\conf folder:
- In the
jakarta isapirewrite.regandworkers2.propertiesfiles, update the Tomcat root path to your real Tomcat path. - Run the
jakarta isapirewrite.regfile to add the information to your web tier server's system registry. -
From your operating system's Control Panel, click Administrative Tools > Internet Information Services.
- Expand your local computer node, click Web Sites.
-
Right-click Default Web Sites, and select New > Virtual Directory.
The Virtual Directory Creation Wizard opens.
- In the Name field, type jakarta, and in the Directory field, browse to the directory where
isapi_redirector2.dllis located (in this example, it is the Tomcat bin folder, with read and execute permissions). - Right-click Default Web Sites, and select Properties. In the Properties window, do the following:
Select the ISAPI Filter tab, and add a filter with the following information:
- Filter Name:
jakarta Executable:
C:\<Tomcat_home>\bin\isapi_redirector2.dllNote: Replace <Tomcat_home> with your real Tomcat home directory.
- Filter Name:
Select the Directory Security tab, and click Edit.
The Authentication Methods window opens.
- Select Integrated Windows authentication at the bottom, and clear all other selections in this window.
-
Start your operating system's command prompt, and run the following commands:
cd C:\Inetpub\AdminScripts cscript adsutil.vbs set w3svc/NTAuthenticationProviders "NTLM"
Your IIS web server configuration changes are completed. You can continue to configure the web browser's security settings to enable trusted sign-on for web clients.
Related topics
