43.0 Preparing for Single Sign-on Access

By default, Identity Manager uses OSP for single sign-on access in Identity Manager. When you install Identity Reporting and the identity applications, you specify the basic settings for user authentication. However, you can also configure the OSP authentication server to accept authentication from the Kerberos ticket server or SAML IDP. For example, you can use SAML to support authentication from NetIQ Access Manager.

NetIQ recommends that you complete the steps in the following checklist.

Checklist Items

  1. Understand how Identity Manager uses OSP for single sign-on access. For more information, see Section 4.5, Using Single Sign-on Access in Identity Manager.

  1. Install OSP. For more information, see Section IX, Installing the Single Sign-on and Password Management Components.

  1. Install the identity applications. For more information, see Section X, Installing the Identity Applications.

  1. (Optional) Install Identity Reporting. For more information, see Section XI, Installing the Identity Reporting Components.

  1. Configure the identity applications for single sign-on access using OSP. For more information, see Section 44.0, Using One SSO Provider for Single Sign-on Access in Identity Manager.

  1. Install the authentication system that you want to use with Identity Manager. For example, Access Manager or Kerberos.

  1. (Conditional) Configure Access Manager and OSP. For more information, see Section 45.0, Using SAML Authentication with NetIQ Access Manager for Single Sign-on.

  1. Verify the single sign-on settings. For more information, see Section 47.0, Verifying Single Sign-on Access for the Identity Applications.