Configuring single sign-on (SSO) for Datacap Navigator

You can configure single sign-on (SSO) for Datacap Navigator by using IBM Security Access Manager, SPNEGO/Kerberos, or container-managed authentication.

About this task

Datacap Navigator supports the following authentication methods:
IBM Security Access Manager
You can configure SSO for Datacap Navigator with IBM Security Access Manager. First, you need to set up SSO in IBM® Content Navigator. For more information, see Configuring single sign-on for IBM Content Navigator by using IBM Security Access Manager for Web on WebSphere Application Server (FileNet P8).
SPNEGO/Kerberos
Datacap Navigator supports SPNEGO/Kerberos authentication. In addition to configuring IBM Content Navigator for SSO, you must configure your browser. For more information, see Configuring single sign-on for IBM Content Navigator by using SPNEGO/Kerberos on WebSphere Application Server (IBM FileNet P8).
Container-managed authentication
Using container-managed authentication, you can switch between repositories in the same instance of IBM Content Navigator without logging in each time you access a repository. The container authentication user is used to communicate with the Datacap application. For example, you can authenticate initially in either IBM Content Navigator or Datacap Navigator, and then switch between the two applications without logging in again.

For more information about configuring IBM Content Navigator for SSO, see Support for Single Sign-on (SSO)

Restriction: For Datacap Navigator, SSO is supported for IBM WebSphere® Application Server only.

Procedure

To configure SSO for a Datacap repository:

  1. Set up any one of LLLDAP/ADSI/LDAP/ADLDS/ authentications for Datacap Server. For instructions about the authentication methods see, Configuring authentication for Datacap.
  2. Enable SSO for your application.
    1. Access the IBM Content Navigator administration tool.
      In a browser, enter a URL with the following format:
      http://host_name:port_number/context_root/?desktop=admin
      By default, the context root is navigator.
    2. Click Repositories in the left pane.
    3. Select an application in the right pane and click Edit.
    4. Click Connect and log in to the application.
    5. Click the Configuration Parameters tab.
    6. Click Enable for the Single sign-on parameter.
    7. Click Save and Close.
    For more information about configuring ADSI, LDAP and ADLDS plug-ins to support SSO, see Configuring ADSI, LDAP and ADLDS authentication templates to support SSO.