General | CoreBlox Blog

Archive for the ‘General’ Category

Quick guide to installing SiteMinder WAM R12 SP2

Friday, January 22nd, 2010

One of the major differences between SiteMinder Web Access Manager (WAM) R12 SP2 and pre-Sp2 is in the changes made in setting up the Administration UI. The SP2 installer comes with an option to choose between a pre-configured Jboss Application Server (JBoss [Trinity] 4.2.3.GA - to serve up the Administration UI components) and your other application servers (JBOSS, WebLogic or WebSphere). In addition to that, it appears that the complex method of configuring the initial administrative user has been removed. Prior installations required you to set up a user store and configure it with the right structure in order to set up the administrator login. These improvements have made it easy to set up SiteMinder R12 SP2 relatively quickly (under 30 minutes) and significantly less complex, which to me is key for those trying to get up to speed with R12.

For those of you who are not aware, R12 allows you to install SiteMinder Administration UI ‘clients’ that can exist on remote servers separate from the Policy Server instance. We’ll be installing everything on the same machine for this tutorial.

Just keep in mind that that you might need to run a client command utility called XPSRegClient to create a trusted relationship between the Administration UI client and the Policy Server when launched for the first time. The most common error that you’ll get is the “no registration on file” message when attempting to log into the Administration UI. See the ‘tips’ section for when you need to run this utility.

The goal of this mini-tutorial is to guide you through how to set up SiteMinder in a Windows environment using ADAM as a policy store (you should be able to use any other supported policy stores) and using built-in application server that ships with the installer – all on the same machine. This is especially useful for those that do not have time to comb through the installer guide.

NOTE: This tutorial should be applicable to the other installers available for Solaris, Linux, HP-UX and AIX.

1. Make sure you have JRE/JDK 1.5 (I’d recommend the most recent JRE/JDK 1.5 version to stay on the safe side) installed on the system that you are about to install SiteMinder on. This is a requirement for the SiteMinder Policy Server.

2. Go to http://support.ca.com and download the following installers:

a. CA SiteMinder Policy Server r12.0 SP2 for Windows-32-(ESD only)

b. Administrative UI Prerequisite Installer for Windows-32-(ESD only)

c. CA SiteMinder Administrative UI r12.0 SP2 for Windows-32-(ESD Only)

3. Configure a new ADAM instance (follow steps 1 through 4 in the Configuring ADAM as a SiteMinder Policy Store guide)

4. Unzip the CA SiteMinder Policy Server r12.0 SP2 for Windows-32 installer and run it.

5. Install SiteMinder R12 SP2. The installation should be straightforward.

a. Just make sure you choose the option to initialize the instance.

b. In the “Create SM Key Database”, it wouldn’t hurt to choose to import the default CA certificates (Certificate Authority).

6. Unzip the Administrative UI Prerequisite Installer for Windows-32 and CA SiteMinder Administrative UI r12.0 SP2 for Windows-32 installer into the same directory.

NOTE: This is important because the Administrative UI prerequisite installer requires the layout.properties file from the Administrative UI installer and if it does not find it, it will abort the installation by indicating that it was unable to find the layout.properties file.

7. Run the adminui-pre-req-12.0-sp2-win32.exe installer.

8. The only options you’ll have to specify is the location of the installation and the server and port number for the Administrative UI to exist on.

9. Once you’ve completed, the prerequisite installer will kick off the ca-adminui-12.0sp2-win32.exe installer automatically. If not, run it.

10. There is no additional configuration parameters to be entered during this install and might take a while to install as it compiles and configures the UI components on the application server.

11. Once completed, the installer will attempt to launch a browser and display the SiteMinder Administrative login:

Note: Under the covers, this step starts the application server and registers the SiteMinder Administration UI with the Policy Server.

12. Use SiteMinder as the username and enter the super-user password that you specified during the SiteMinder Policy server installation. Leave the ‘server’ blank as it will default to using the local server and port (unless you have specified otherwise)

13. And you’re done! You should be able to proceed with importing your SiteMinder 6.x policies and viewing them in the new Administration UI.

Tips:

If the time difference between the time you installed the Policy Server and the time you installed the Administration UI is greater than 24 hours, you might need to run the following command if you see this error when trying to login to the Administration UI for the first time:

c:\CA\Siteminder\bin>XPSRegClient siteminder -adminui-setup -t 1440 -r 5 -cp -l c:/logs/ -e c:/logs/error.log –vT

• (run XPSRegClient.exe without any parameters to get the catalog of option).

• The parameter ‘siteminder’ refers directly to the super-user

• You’ll be prompted to enter a passphrase, use the super-user password

This step is necessary to create a trusted relationship between the client and the policy server.

Another thing to note is that the built-in JBoss 4.2.3 application server runs on its own JRE (1.6.0_13) that is found in the adminui/runtime directory.

As you see, the updated R12 SP2 version of SiteMinder has made it significantly easier for users to install SiteMinder R12. Check this article for an overview of how you would plan your CA SiteMinder Upgrade to R12.

Tags: adminui, Database, Identity and Access Management, LDAP, policy server, project planning, R12, R12 sp1, R12 sp2, siteminder, updates, upgrade, WAM, Web Access Manager, XPSRegClient
Posted in General | 7 Comments »

Happy Holidays

Tuesday, December 29th, 2009

happy_new_year Best wishes for a healthy and prosperous 2010!

-Team CoreBlox

[photo credit: optical_illusion @ Flickr]

Tags: 2010, Happy Holidays, Happy New Year
Posted in General | No Comments »

Attention Sales People

Thursday, October 15th, 2009

help_wanted Yesterday we posted a new opportunity in our Jobs section. We’re looking for a salesperson to help prospect and sign engagements for our professional services team. Sales experience is required, and experience with enterprise security is even better. But most importantly, we need someone who is dependable, honest, and hardworking. CoreBlox is blessed with a wealth of enterprise security knowledge and no shortage of clients who will speak to the quality of our work. We know there is plenty of opportunity in this space, and we need someone who can be dedicated to going out and finding it for us. The role is part-time and compensation is commission-based, so it could work out well for someone who is currently between jobs.

Are you interested? Do you know someone else who might be? Please help us spread the word via Facebook, LinkedIn, Twitter, good ol’ fashioned e-mail, or word of mouth! No recruiters please.

Tags: CoreBlox, dependable, enterprise security, hiring, honest, job, professional, sales
Posted in CoreBlox News, General | No Comments »

Happy New Year

Wednesday, December 31st, 2008

From the entire CoreBlox team, we wish you all a very happy and productive 2009!

Tags: holiday
Posted in General | No Comments »

Introducing the New CoreBlox Web Site

Friday, November 21st, 2008

Today we are pleased to announce the launch of our new website. For those curious as to why we redesigned our site, here are a few reasons:

We wanted a cleaner, easier-to-use site
We wanted to change the focus to reflect what we have been spending most of our time working on (professional services, social/community sites, etc.)
We wanted to convey a small company vibe and inject our personality into the site
We wanted to showcase the clients and partners we work with, some of which are Fortune 500 companies
We wanted to integrate our use of Twitter

As always, if you have any feedback for us, we’d love to hear from you.

-Dave

Tags: CoreBlox, updates, usability, website
Posted in CoreBlox News, General | No Comments »

Why Ning Makes Perfect Sense for a College Class Site

Thursday, October 23rd, 2008

Yesterday I received the annual request for me to pay my class dues for my beloved Dartmouth College. The dues request letter lists a number of key class activities this money goes to fund, but one of them caught my eye: “Redesigning our Class Website”.

I don’t think anyone would disagree that our current class website needs some work. It was released within a year of our graduation, and it hasn’t really changed since then. Our class notes are grossly outdated and our events page still lists info about our 5-Year Reunion. About the only reason I have to visit this page is to pay my dues online, and even the links from that page are outdated since they show dues at $5 cheaper than what they should be.

Obviously the web has evolved since our class site was released in the mid-90’s. That’s why the thought of a redesign for this sites makes so little sense to me. A traditional static “web page” for a site that’s meant to help our class maintain personal relationships just isn’t going to cut it. What drives users to make repeat visits to a web site? Fresh content. Who better to provide content to a college alumni class than the community members themselves? That’s why I believe this redesign is crying out for a social network. And that’s why I’m going to suggest Ning.

I first heard of Ning when they began to get coverage on TechCrunch. In case you haven’t heard, Ning allows you to create your own social network. For free. Were you going to hire developers to build your own social network from scratch? If so, call and cancel. You can have your own mini-Facebook up and running in minutes, complete with custom branding, widgets from other sites, member profiles, events, groups, discussion forums, photos, videos, and probably 10 other things I’m forgetting. If you’re unhappy with the “out-of-the-box” look & feel options that Ning gives you, you can pay those same developers to customize it. Or do it yourself. Trust me, it’s not that hard.

With Ning, the Dartmouth Class of ‘96 could:

Give each member his/her own custom profile page to keep classmates up to date on what’s going on in their lives
Convert the class newsletter to blog format
Allow posting of videos & photos
Publicize alumni events and any interesting tidbits from the college calendar
Create custom pages that link out to related college sites and PayPal for dues collection
Encourage class-related conversations via the discussion forums (this would have been a great way to debate the recent controversial trustee election)
Create groups to focus on specific interests or geographic regions

The possibilities are virtually endless, and the best part is that all of the items I just described are available out-of-the-box with Ning. This way, the class officers can focus energy and budget on encouraging participation rather than driving technology projects.

Oh- I saved the best part for last: Ning works on the iPhone! This is a great way to counter that feeling you get when you look at your newsletter and realize you graduated before anyone had heard of Google, YouTube, or Twitter. Thanks to Ning you can flash your iPhone and show younger classmates that despite your advanced age, your class is still up with technology.

OK, I’ll stop pitching Ning to you now. Hopefully the points I’ve made here will be enough to convince my classmates that this is the right move for us. Big thanks to Twitter user @kfred85 for inspiring me to write this up.

By the way- if you’ve used Ning to create a social network for an alumni site or any other purpose, we’d love to hear about it in the comments!

Tags: class, Dartmouth College, Ning, social network
Posted in General | 2 Comments »

Back from our Colorado Offsite

Monday, September 22nd, 2008

Well, we are back from our offsite to Colorado. It was a great trip and an important adventure for the company. Overall, we could not have asked for a better time.

We landed in Denver on Wednesday and headed to Estes Park after having a quick bite and picking up our baggage and rental car. The car was a mini van, but it wound up being OK. We just left it a little further away when parking and pretended to be in a different vehicle. Wednesday night we went to dinner at the Rock Inn Mountain Tavern. It was a nice meal and we had fairly good service. The place is definitely a hangout spot for the locals which is always a good sign about the quality of a place. We also walked around Estes Park to explore a little and went grocery shopping for our daily meals. For some reason everyone seemed very perturbed by my desire to walk down each aisle to get ideas for what we needed. Overall, we got a good selection of stuff and then headed back to the house.

Thursday morning we went for a ride with Sombrero Ranch. It was a nice ride up into the hills behind the ranch. We saw some great views of the mountains and some of us could make out what was called Beaver Rock. To me it just looked like a rock, though. After the ride we headed into Estes Park for lunch and had great burgers at Penelope’s. Afterwards we headed back to the house to talk about company planning and next steps. We went to dinner at Mary’s Lake Lodge which was very nice. The dinner was excellent. That evening we had a nice campfire while smoking cigars. Next time we have to remember the marshmallows.

Friday morning we had a little bit of a later start. After spending the morning continuing our company conversations, we headed out to Boulder to explore the town and have dinner. The walk around Boulder was nice and we were able to do some good shopping damage. We met up for dinner at Sunflower restaurant. The dinner and service was excellent. Afterwards we met up with several friends and then headed back to Estes Park for our ping pong tournament.

Saturday we headed into the park for a nice hike up to Emerald Lake. We saw quite a few great scenes which were breathless not only for their beauty, but also for the lack of oxygen for us non-mountain folk. After the hike we had a nice picnic at Hollowell Park. We headed back to the house for some rest and then out to Estes Park for a walk around town to pick up stuff for our BBQ and one last walk around town. That evening we had a nice BBQ and then after more ping pong relaxed in the hot tub.

Sunday morning, we headed back to the airport and back home. Overall it was a great trip. It was perfect timing for a company excursion and was definitely filled with excitement. We could really call this the trip of firsts. It was the first CoreBlox offsite, first time for many to Colorado and Rocky Mountain National Park, the first time for some on horseback and even the first time one person ate duck. I already can’t wait for the 2009 offsite.

Thanks everyone for taking the time to have this adventure.

Todd

Tags: Offsite
Posted in General | No Comments »

Thank you, SiteMinder

Tuesday, August 19th, 2008

Seven years ago when I was working for Onyx Software, I led a CRM implementation for a Waltham, MA based company called Netegrity. Netegrity had made an early arrival to the Identity & Access Management (IAM) party, and its SiteMinder solution for single sign-on (SSO) had been wildly successful with Fortune 500 companies. About a year later when I was looking to reduce my travel load and get a view of the CRM world from the other side, I joined Netegrity’s Business Systems group where I began working with my fellow CoreBlox co-founders. Three years later CA acquired Netegrity, and shortly after that we launched CoreBlox.

Normally I would end that last paragraph with “And the rest is history…”, but it’s important to recognize a major component that has allowed our start-up to defy the odds and celebrate three years as a self-funded business: SiteMinder. There’s no doubt that having a strong, smart, versatile team has been a key to our success, but it would be difficult to pursue our Web 2.0 initiatives (such as our I Have Kids app which is up to 60,000 users!) if we were unable to find consistent sources of revenue to fund them. Our team’s SiteMinder expertise has allowed us to establish ourselves as a boutique firm in a niche market, and it has opened doors in other spaces such as directory virtualization and SAML/federation. In a down economy, IAM spending has remained strong enough to provide us with the engagements we need to drive our business forward:

“… the number of organizations planning to roll out identity and access management solutions in the next 12 to 18 months increased 11 [percentage points], moving from 49 percent in 2006 to 60 percent in 2008.“

As with any product or service that one works with on a daily basis, it’s easy to focus on gaps and frustrations. Sometimes we need to step back and recognize that what makes the solution complex leads to the opportunities that those who know it well can enjoy.

So on behalf of the entire CoreBlox team, I’d like to offer a sincere THANK YOU to SiteMinder. May you continue to send great opportunities and clients our way!

Tags: consulting, directory virtualization, Federation, IAM, netegrity, Radiant Logic, SAML, siteminder, SSO
Posted in General | No Comments »

Happy New Year from CoreBlox!

Sunday, December 30th, 2007

Pats

[source: Sports Illustrated]

On behalf of all the CoreBlox team, we’d like to wish the very best for all of you in 2008! And oh yeah…..GO PATS!

-Dave

Posted in General | No Comments »

Happy Holidays from the CoreBlox team

Tuesday, December 26th, 2006

Lisbon - Christmas