Contact ncashell

Member since
9/19/2007

No author bio information

User Points

0 points earned on legacy (former) Cool Solutions site
1235 points earned on this site

Author Archives

Most NAM setups involve a Load Balancer (LB) fronting either the Access Gateway or Identity Server nodes. When these Load Balancers are set up in SNAT / Proxy mode, the IP address of the incoming request will be that or the LB and not the users IP address. Any NAM decisions that perform an action…

Aug 28, 2015
4:40 pm
Reads:
101
Score:
5

NetIQ technical services gets a lot of requests from customers reporting poor ratings when evaluated by SSLLABs tool. The following document outlines some changes that will hopefully help move you towards an A+ rating. Changes Needed on Access Manager Appliance or Access Gateway Appliance You must have a certificate using SHA 256 to obtain…

Aug 20, 2015
12:46 pm
Reads:
198
Score:
5

This cool solution will show you how to integrate ServiceNow into your NAM implementation using a federated authentication via SAML 2.0. By using SAML 2.0, your users authenticate to NAM as they typically do using their existing LDAP credentials provided by your corporate directory. The service-now.com application then authenticates users via SAML without the need to synchronize passwords with service-now.com.

May 29, 2013
11:23 am
Reads:
5,265
Score:
5

NetIQ Access Manager has always provided the ability for users to single sign on to back end web servers. These back end web servers provide a series of protected resources that users can only access once authenticated to an Identity Server, and authorised by the Access Gateway. Having parsed the user credentials, and validated these credentials against a back end user store, the Identity server creates and maintains an active session for that user.

May 22, 2013
11:45 am
Reads:
2,376
Score:
5

Neil Cashell and Tom Greene show how Novell Access Manager can be used to single sign on to Cisco’s WebEx collaboration cloud using the SAML2 protocol.

Sep 2, 2011
12:43 pm
Reads:
2,847
Score:
Unrated

This article by Alan Weber and Neil Cashell explains how to configure a Novell Access Manager 3.1 SAML 1.1 Identity provider so that it integrates seamlessly with a Vertex SAML 1.1 Service Provider using the Intersite transfer URL.

Aug 30, 2011
3:54 pm
Reads:
1,877
Score:
Unrated

When debugging the most common SAML setups with Novell Access Manager, the Authentication Request and response including the assertion are sent via the browser using the POST or Redirect profile. HTTP header output on the browser can be used to view these SAML request/responses, but the content is both URL and base64 encoded and therefor not very legible. Here’s a tip from Neil Cashell on how to use a new SAML plugin for Firefox that will make it faster to troubleshoot and more legible.

Categories: Uncategorized
Aug 23, 2011
3:01 pm
Reads:
10,192
Score:
Unrated

When a SAML 2 environment is setup to federate between an Identity Provider (IDP) and Service Provider (SP), the user is always prompted to consent to the federation before it progresses. Here’s a tip from Neil Cashell on how to disable the question.

Categories: Uncategorized
Jun 13, 2011
12:11 pm
Reads:
1,570
Score:
4

Neil Cashell explains how to add a Shibboleth SP to your NAM implementation using a federated authentication via SAML 2.0.

Jun 3, 2011
11:07 am
Reads:
4,927
Score:
Unrated