Installation guide

74 Web Agent Installation Guide

You typically register only one trusted host for each machine where web servers

and Agents are installed. However, you can register multiple trusted hosts on

one computer to create distinct connections for each SiteMinder client. Using

multiple trusted hosts ensures a unique shared secret and a secure connection

for each client requiring communication with the Policy Server.

For most installations this is not a recommended configuration. However, it is an

option for sites who require distinct, secure channels for each client or group of

client applications protected by SiteMinder Agents. For example, an application

service provider may have many client computers with different applications

installed. You may want a secure connection for each application, which you can

achieve by registering multiple trusted hosts. The Policy Server then issues

unique shared secrets for each client connection.

To register multiple trusted hosts, use one of the following methods:

■

Registering with the Configuration Wizard: To register additional servers as

trusted hosts, go through the registration process again; however, when

prompted to specify a location for the SmHost.conf file, enter a unique path.

Do not register a new host and use an existing web server‘s SmHost.conf file

or that file will be overwritten. You can use the name SmHost.conf or give

the file a new name.

Note: If you have registered a trusted host with a Policy Server and you run

the Configuration Wizard to configure subsequent Agents without using a

unique path for the SmHost.conf file, you will see a warning message in the

Host Registration dialog box. The message reads:

"Warning: You have already registered this Agent with a Policy Server."

■

Registering with the smreghost command-line tool: Run the smreghost tool

after you have completed the first Agent installation on a given computer.

You can run this tool for each trusted host that you want to register.