Using SecureLogin Scripting to Enable Quick Finder Login for Web Single Sign-On



By: mugirish

August 30, 2007 1:48 pm

Reads: 332

Comments:0

Rating:0

Introduction
Quick Finder Usage and Implementation in SecureLogin script
SecureLogin Script for Quick Finder
Implementing the Quick Finder Script with Novell SecureLogin

The main objective of this AppNote is to give you an overview of how you can use the Novell SecureLogin scripting to enable the Quick Finder search for Web Single Sign-On. This AppNote explains the different ways to access the Quick Finder portal from a browser and how the SecureLogin script provided with this article handles the different scenarios of Quick Finder access. This can also be used as guide to write similar scripts that works with various logins of other Web SSO services.

This AppNote is basically intended to cover all aspects that allow you to configure and use Quick Finder script for Web Single Sign-on with Novell SecureLogin (NSL).

Introduction

Quick Finder is a site-specific search engine that allows your users to search your public and private sites, your partners’ sites, and any number of additional Web sites across the Internet, all from a single search interface on your Web site. You can also tell Quick Finder to index any of the attached file servers throughout your enterprise. But the access to this service that allows you to use all the power of Quick Finder can be available to users who login into Quick Finder search. This is where you can make Novell SecureLogin and Quick Finder interoperate. This AppNote explains the different types of Quick Finder access from your browser, and how the NSL script provided here handles those situations.

By making NSL interoperate with Quick Finder, you can use Novell SecureLogin to seamlessly log in all users to Quick Finder and gain access to all its power.

Quick Finder Usage and Implementation in the SecureLogin Script

Quick Finder delivers robust, feature-rich search capabilities ranging from file systems to Web sites, using the browser as a Web service. Here are the different ways you can access the Quick Finder service:

1. Public access: This is can be accessed by any user who provides the URL to the Quick Finder service. For example: https://<Hostname/IP-Address>/qfsearch

Implementation in SecureLogin Quick Finder Script – This part of Quick Finder usage will not require you to log in, hence the SecureLogin script just prompts you to confirm whether you want to log in as a user. If you are intending to use Quick Finder without logging into it, just click No and proceed when you are shown a prompt like “User has only public access. Would you like to login for Privileged access”.

2. Private/Privileged access: This can also be accessed as above, except for that fact that you also need to log in to gain privileged access.

Implementation in SecureLogin Quick Finder Script – As mentioned above, the only difference in this form of Quick Finder usage is that you will log in to the Quick Finder server to gain Privileged access. If you are intending to use Quick Finder by logging to it, just click Yes and proceed when you are shown a prompt like “User has only public access. Would you like to login for Privileged access”.

3. Administrator access: This provides access to the Quick Finder Server Manager, from where you can create and manage all virtual search servers, their indexes, and all other Quick Finder Server configuration settings. This can be accessed using the URL, such as:
:https://<Hostname/IP-Address>/qfsearch/admin

Implementation in SecureLogin Quick Finder Script – This mode of access is for the administrator of the Quick Finder server, to manage virtual search servers and to create indexes for use. If you access Quick Finder for the admin user, you will be prompted to provide a username and password for the admin user.

SecureLogin Script for Quick Finder

The Quick Finder script shown below is written to handle the following SSO aspects:

  • Quick Finder login handling
  • Invalid username/ password handling
  • Login loop handling
  • Handling of the Quick Finder Login for an admin user
#####################################################################
# URL  			: /qfsearch
#
# Name			: Quick Finder Web login 
#
# Type				: Advanced Web Login Script
# 
# This Application Definition is capable of handling the following:-
# 
# 	* Quick Finder Login Handling.
#	* Invalid User name/ Password Handling.
#  	* Login Loop handling.
#	* Handles the Quick Finder Login for a Admin User
#
#####################################################################

#**********************************************************************
# Purpose of Application Definition : " Quick Finder Login Handling for Web-SSO"
#**********************************************************************

If -Text "password:"
	Call Login
EndIf

#**************************************************************
#
# Purpose: Quick Finder Wrong Username and/or Password Handling
#
#**************************************************************

If -Text "Invalid sign in"
	DisplayVariables "Your UserName and/or Password seems to be wrong. 
	Please enter the Login Credentials!!" $Username $Password
	Call Login
EndIf

If -Text "user:public"

	MessageBox "User has only Public access. 
	Would you like to login for Priviliged access?" -YesNo ?EnterChoice
		
	If ?EnterChoice Eq "Yes"

			Click #1
			
		Else
			
			Endscript
	EndIf
EndIf

#******************************************************
# Subroutine Name: Login
#
# Purpose: It handles the Quick Finder Web Login
#
#******************************************************

Sub Login

	SetPrompt "User name:"
	Type $Username #1
	SetPrompt "Password:"
	Type $Password #2
	Submit
	SetPrompt "Enter Quick Finder Account Credentials: :"
	EndScript
EndSub

#**********************************************************************
# 
#
# Purpose of Application Definition : "Handles the Quick Finder Login for an Admin User" 
#
#**********************************************************************

If -Text "Login"

	SetPrompt "User name:"
	Type $Username #1
	SetPrompt "Password:"
	Type $Password #2
	Submit
	SetPrompt "Enter Quick Finder Account Credentials:"
	EndScript
EndIf

Implementing the Quick Finder Script with Novell SecureLogin

The Quick Finder script can be added to the Novell SecureLogin(NSL) client by following the steps below:

1. From the system tray, launch the NSL icon to display the Manage Logins window.

2. In the left panel, Goto the Applications option and right-click to add the New application.

A dialog box appears, enabling you to add the new application definition.

3. In the dialog box, choose the second radio button to add the New Application Definition.

4. Provide the values to the following three parameters to create the Application Definition:

  • Type: This defines the type of the application, such as Windows, Terminal emulator, Java, Web, etc. Because we are creating an Application Definition for Quick Finder, which is a Web application, you need to choose the “Advanced Web” option from the dropdown box.
  • URL: For the Quick Finder account, provide “/qfsearch” as parameter value.
  • Description: Here you can provide any value that will help you understand the type of application for which this Application Definition is being added. For this parameter, provide a value such as “Quick Finder”.

Figure 1: Adding the New Application for Quick Finder Login

5. Go to the Definition tab under the above newly added application and add the script provided.

Figure 2: Adding New Application Definition for Quick Finder Login

6. Launch the Quick Finder Login page.

The Quick Finder search page appears. This page is accessible to all users, but for you to gain Privileged access to search, you’ll need to log in as a directory user.

7. When SecureLogin prompts you to log in, click Yes to configure your Quick Finder login for Web SSO.

Figure 3: SecureLogin prompt to configure Quick Finder with Privileged access and enable for Web SSO

The user will now be taken to a page with a prompt to provide credentials for Quick Finder login by SecureLogin.

Figure 4: SecureLogin detection of Quick Finder and prompt to provide credentials for Quick Finder login by SecureLogin

VN:F [1.9.22_1171]
Rating: 0.0/5 (0 votes cast)

Tags: ,
Categories: SecureLogin, Technical Solutions

Disclaimer: As with everything else at NetIQ Cool Solutions, this content is definitely not supported by NetIQ, so Customer Support will not be able to help you if it has any adverse effect on your environment.  It just worked for at least one person, and perhaps it will be useful for you too.  Be sure to test in a non-production environment.

Comment