Owners Manual

ManualsBrandsDell ManualsComputer equipmentOpenManage Network Manager

Setting Up Authentication | Getting Started

OMNM 6.5.2 User Guide 81

The example we tested uses two devices running Tomcat 7.x and Java 6 on one device (DeviceA)

and OpenManage Network Manager on the second device (DeviceB). You must access DeviceA

using its fully qualified hostname (example: QA002.test.loc, not QA002). You must create

cas-

web.war

for OpenManage Network Manager’s CAS server to support this. Instructions about how

to do this are on the CAS open source site at

wiki.jasig.org/display/CASUM/Best+Practice+-

+Setting+Up+CAS+Locally+using+the+Maven+WAR+Overlay+Method.

Your preferred

search engine may find other instructions for compiling or downloading

cas-web.war

file.

Configuring DeviceA

Follow these steps:

Install tomcat 7.x (example:

apache-tomcat-7.0.37-windows-x64.zip

)

Insert

cas-web.war

into the

..\tomcat\apache-tomcat-7.0.37\webapps

directory. Start Tomcat (run

startup.bat

tomcat\bin

directory). This extracts

cas-

web.war

, creating the

cas-web

folder with subcomponents.

Shut down Tomcat (

shutdown.bat)

Creating RADIUS configuration setup:

Follow these steps (inserting the correct path when

[path]

appears):

Edit the

deployerConfigContext

file located in the

..tomcat\apache-tomcat-

7.0.37\webapps\cas-web\WEB-INF

directory.

Search for the

RadiusAuthenticationHandler

section of that file.

Replace index="0" with the IP address of the RADIUS server.

Replace index='1' with the global RADIUS server password.

We tested a RADIUS server using mschapv2 protocol. If your radius server uses a different

protocol replace index='2' value with the correct RADIUS protocol value.

6 Save

this file.

Create, Export, Import Certificates using Java

Follow these steps:

Run the following from the Java location on your computer (typically under

c:\Program

Files

in Windows):

..Java\jdk1.6.0_26\bin>keytool -genkey -alias cascommon -keyalg RSA

..Java\jdk1.6.0_26\bin>keytool -export -alias cascommon -file

casserver.crt

..Java\jdk1.6.0_26\bin>keytool -import -trustcacerts -alias cascommon -

file casserver.crt -keystore "C:\Program

Files\Java\jdk1.6.0_26\jre\lib\security\cacerts"

Uncomment

connector port="8443"

section in the

..\tomcat\apache-tomcat-

7.0.37\conf\server.xml

file

And add keystorefile, keystorepass, truststorefile properties

<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"

maxThreads="150" scheme="https" secure="true"

clientAuth="false" sslProtocol="TLS"

keystoreFile="C:\users\TestUser\.keystore"