System Layout
The system requires four services that you must run on at least two machines:
- Novell eDirectoryTM for user accounts and iChain configuration
- iChain 2.2 Service Pack 1
- A Web server with a servlet container to run the iChainSite sample application
- A Web server with a servlet container to run the SAML extension for the iChain product
The following figure shows how these services are connected and related:
Figure 1System Services: Connections and Relationships
Both the iChain and SAML extension service have connections to eDirectory to read configuration information and user attributes. In order to conserve hardware, eDirectory, the Web server, and the SAML extension service can be run from the same machine
Prerequisites
You should be familiar with the setup and configuration of iChain 2.3. In order to run the iChainSite sample site, the following prerequisites are required:
- iChain 2.3 Service Pack 2 iChain Authorization server components
- ConsoleOne® snap-ins for iChain
- LDAP authentication and OLAC enabled
Figure 2 shows an iChain installation with the proper authorization and OLAC settings applied. The important points in this figure are the configuration directory settings and the Enable Object Level Access Control (OLAC) setting.
Figure 2iChain Installation With Correct Settings
For hardware requirements, see the iChain Hardware Guide.
For additional information and full system requirements for Novell iChain, refer to the Novell iChain Administration Guide, available at the Novell Documentation Web site.
You can download Novell iChain at Novell Software Downloads.
You can download SAML sample site code at Novell Cool Solutions.