2.6 Deploying Your Authentication Class

  1. Create a jar file for your authentication class and any associated classes.

  2. Add the jar file to the /opt/novell/nam/idp/webapps/nidp/WEB-INF/lib directory using Advanced File Configurator.

    For information about how to add a file, see Adding Configurations to a Cluster in the NetIQ Access Manager 5.0 Administration Guide.

  3. (Conditional) If you created a custom JSP page for your authentication class, add it to the /opt/novell/nids/lib/webapp/jsp directory of Identity Server using Advanced File Configurator.

  4. Click Devices > Identity Servers > Edit > Local > Classes > New.

  5. Specify the following details:

    Display name: Specify a name that Administration Console can use to identity this class.

    Java class: Select Other. This allows you to specify the path name of your Java class.

    Java class path: Specify the name of your Java class.

  6. Click Next, and specify any needed properties of your class.

    This is dependent upon your class. You need to specify properties only if your class requires them.

    This information is sent to your class in the props parameter when your class is called.

  7. Click Finish.

  8. To configure a method for your class, click Methods > New, and select your class in Class.

    When you configure a method, you specify which user stores can be used for authentication. This information is returned to your class in the uStores parameter when your class is called.

    For more information, see Creating Authentication Methods in the NetIQ Access Manager 5.0 Administration Guide.

  9. Click Finish.

  10. To configure a contract for your class, click Contracts > New, and move your class to be a value in the Methods list.

    For more information, see Creating Authentication Contracts in the NetIQ Access Manager 5.0 Administration Guide.

  11. (Optional) Default contracts can be specified for each authentication type that might be required by a service provider. These contracts are executed when a request for a specific authentication type comes from a service provider.

    For more information, seeSupported Authentication Class Types and “Specifying Authentication Defaults” in the Access Manager 5.0 Administration Guide.

  12. Click Finish > OK.

  13. Restart Identity Server.

  14. On Identity Servers page, click Update.

  15. Update any associated devices that are using this Identity Server configuration.