8.1 Preparing to Run the Client Login Extension for Novell Identity Manager 3.5

Before running the Client Login Extension, you must have a working Identity Manager 3.5 system and have the User Application configured correctly to enable the Password Self-Service feature. (For information on installing Identity Manager 3.5 and the User Application, see the Identity Manager 3.5.1 Installation Guide.)

In order to have the Password Self-Service feature enabled, you need to perform at least the following:

You initially set up the Password Self-Service feature through iManager by using the Passwords > Password Policies > Forgotten Password and Policy Assignment options. For more information on the Password Self-Service feature, see Chapter 3, “Managing Passwords by Using Password Policies” and Chapter 4, “Password Self-Service” of the Novell Password Management Administration Guide.

Use the Identity Manager User Application to complete the password configuration. For information about configuring Password Self-Service through the Identity Manager User Application, see Chapter 5.3, “Password Management Configuration” in the Identity Manager 3.5 User Application: Administration Guide.

You also need to turn on SSL in JBoss^*. See Chapter 2.2.2, “Self-Signed Certificates,” and 2.2.3, “Turning on SSL in JBoss” in the Identity Manager 3.5 User Application: Administration Guide. The Client Login Extension does not work without SSL.

You must enable the URL rewriting when the User Application is deployed on the IBM WebSphere Application Server.

With the Forgotten Password feature enabled and the password policy assigned, you now have a valid HTML link for the restricted browser to use. This link needs to be configured for HTTPS, for example https://hostname:8443/IDM/jsps/pwdmgt/ForgotPassword.jsf. Use this URL when running the Client Login Extension Configuration utility.