Tivoli Access Manager for Enterprise Single Sign-On

Similar documents
Tivoli Access Manager for Enterprise Single Sign-On

Tivoli Access Manager for Enterprise Single Sign-On

Tivoli Access Manager for Enterprise Single Sign-On

Tivoli Access Manager for Enterprise Single Sign-On

Tivoli Access Manager for Enterprise Single Sign-On

IBM Tivoli Access Manager for Enterprise Single Sign-On: Authentication Adapter Version 6.00 September, 2006

Tivoli Access Manager for Enterprise Single Sign-On

Release Notes. IBM Tivoli Identity Manager Rational ClearQuest Adapter for TDI 7.0. Version First Edition (January 15, 2011)

Release Notes. IBM Security Identity Manager GroupWise Adapter. Version First Edition (September 13, 2013)

Release Notes. IBM Tivoli Identity Manager GroupWise Adapter. Version First Edition (September 13, 2013)

Release Notes. IBM Tivoli Identity Manager Universal Provisioning Adapter. Version First Edition (June 14, 2010)

Workplace Designer. Installation and Upgrade Guide. Version 2.6 G

Tivoli Access Manager for Enterprise Single Sign-On

Release Notes. IBM Tivoli Identity Manager Oracle PeopleTools Adapter. Version First Edition (May 29, 2009)

Tivoli Access Manager for Enterprise Single Sign-On

Tivoli Access Manager for Enterprise Single Sign-On

Limitations and Workarounds Supplement

IBM Tivoli Directory Server Version 5.2 Client Readme

IBM Tivoli OMEGAMON XE for R/3

IBM Tivoli Monitoring for Databases. Release Notes. Version SC

IBM Tivoli OMEGAMON DE for Distributed Systems

iscsi Configuration Manager Version 2.0

IBM Tivoli Identity Manager Authentication Manager (ACE) Adapter for Solaris

Tivoli Access Manager for Enterprise Single Sign-On

Tivoli Access Manager for Enterprise Single Sign-On

IBM Rational Synergy DCM-GUI

IBM WebSphere Sample Adapter for Enterprise Information System Simulator Deployment and Testing on WPS 7.0. Quick Start Scenarios

Netcool/Impact Version Release Notes GI

Migrating Classifications with Migration Manager

Release Notes. IBM Tivoli Identity Manager I5/OS Adapter. Version First Edition (January 9, 2012)

IBM Directory Server 4.1 Release Notes

IBM License Metric Tool Version Readme File for: IBM License Metric Tool, Fix Pack TIV-LMT-FP0001

Printing Systems Division. Infoprint Manager for AIX NLV Release Notes

Integrated use of IBM WebSphere Adapter for Siebel and SAP with WPS Relationship Service. Quick Start Scenarios

Limitations and Workarounds Supplement

IBM Maximo for Aviation MRO Version 7 Release 6. Installation Guide IBM

Getting Started with InfoSphere Streams Quick Start Edition (VMware)

Tivoli Switch Analyzer

Version 1.2 Tivoli Integrated Portal 2.2. Tivoli Integrated Portal Customization guide

Installation and User s Guide

Release 6.2 Installation Guide

Limitations and Workarounds Supplement

Best practices. Starting and stopping IBM Platform Symphony Developer Edition on a two-host Microsoft Windows cluster. IBM Platform Symphony

IBM Maximo for Service Providers Version 7 Release 6. Installation Guide

Chapter 1. Fix Pack 0001 overview

Patch Management for Solaris

Platform LSF Version 9 Release 1.1. Migrating on Windows SC

IBM Endpoint Manager Version 9.1. Patch Management for Ubuntu User's Guide

Networking Bootstrap Protocol

CONFIGURING SSO FOR FILENET P8 DOCUMENTS

Installing Watson Content Analytics 3.5 Fix Pack 1 on WebSphere Application Server Network Deployment 8.5.5

Printing Systems Division. Infoprint Manager for Windows NLV Release Notes

IBM Tivoli AF/Remote

Build integration overview: Rational Team Concert and IBM UrbanCode Deploy

Configuring IBM Rational Synergy to use HTTPS Protocol

IBM Security QRadar Version Customizing the Right-Click Menu Technical Note

Lotus Forms Designer 3. What s New

Version 9 Release 0. IBM i2 Analyst's Notebook Premium Configuration IBM

IBM Copy Services Manager Version 6 Release 1. Release Notes August 2016 IBM

Development tools System i5 Debugger

IBM Integration Designer Version 8 Release 5. Hello World for WebSphere DataPower Appliance IBM

Tivoli Endpoint Manager for Patch Management - AIX. User s Guide

SMASH Proxy Version 1.0

Version 9 Release 0. IBM i2 Analyst's Notebook Configuration IBM

IBM Spectrum LSF Process Manager Version 10 Release 1. Release Notes IBM GI

IBM Tivoli OMEGAMON XE for Databases

IBM Directory Integrator 5.1.2: Readme Addendum

IBM. Tivoli Usage and Accounting Manager (ITUAM) Release Notes. Version GI

Platform LSF Version 9 Release 1.3. Migrating on Windows SC

IBM Maximo Spatial Asset Management Version 7 Release 5. Installation Guide

IBM Cognos Dynamic Query Analyzer Version Installation and Configuration Guide IBM

IBM Maximo Spatial Asset Management Version 7 Release 5. Installation Guide

Application and Database Protection in a VMware vsphere Environment

IBM BladeCenter Chassis Management Pack for Microsoft System Center Operations Manager 2007 Release Notes

IBM Maximo Calibration Version 7 Release 5. Installation Guide

RSE Server Installation Guide: AIX and Linux on IBM Power Systems

IBM Operations Analytics - Log Analysis: Network Manager Insight Pack Version 1 Release 4.1 GI IBM

IBM Security QRadar Version Forwarding Logs Using Tail2Syslog Technical Note

Tivoli Access Manager for Enterprise Single Sign-On

IBM Storage Driver for OpenStack Version Installation Guide SC

A Quick Look at IBM SmartCloud Monitoring. Author: Larry McWilliams, IBM Tivoli Integration of Competency Document Version 1, Update:

IBM License Metric Tool Enablement Guide

IBM. Release Notes November IBM Copy Services Manager. Version 6 Release 1

Using application properties in IBM Cúram Social Program Management JUnit tests

Using Client Security with Policy Director

Express Edition for IBM x86 Getting Started

IBM Maximo Spatial Asset Management Version 7 Release 6. Installation Guide IBM

IBM Operational Decision Manager Version 8 Release 5. Configuring Operational Decision Manager on Java SE

IBM Decision Server Insights. Installation Guide. Version 8 Release 6

IBM OpenPages GRC Platform Version 7.0 FP2. Enhancements

Performance Toolbox for AIX Version 3.1

IBM Tivoli Identity Manager IBM Security Access Manager for Enterprise Single Sign-On Adapter for Tivoli Directory Integrator

IBM Storage Driver for OpenStack Version Release Notes

IBM Storage Driver for OpenStack Version Installation Guide SC

Installing on Windows

IBM Rational DOORS Installing and Using the RQM Interface Release 9.2

IBM Kenexa LCMS Premier on Cloud. Release Notes. Version 9.3

IBM Storage Management Pack for Microsoft System Center Operations Manager (SCOM) Version Release Notes

System i. Networking RouteD. Version 5 Release 4

IBM Rational Development and Test Environment for System z Version Release Letter GI

Transcription:

Tivoli Access Manager for Enterprise Single Sign-On Version 6.0 Kiosk Adapter Installation and Setup Guide SC32-1997-00

Tivoli Access Manager for Enterprise Single Sign-On Version 6.0 Kiosk Adapter Installation and Setup Guide SC32-1997-00

Note: Before using this information and the product it supports, read the information in Notices, on page 15. First Edition (September 2006) This edition applies to version 6, release 0, modification 0 of IBM Tivoli Access Manager for Enterprise Single Sign-On (product number 5724-N70) and to all subsequent releases and modifications until otherwise indicated in new editions. Copyright International Business Machines Corporation 2006. All rights reserved. US Government Users Restricted Rights Use, duplication or disclosure restricted by GSA ADP Schedule Contract with IBM Corp.

Table of Contents Welcome to TAM E-SSO: Kiosk Adapter... 2 Installation Overview... 2 System Requirements... 3 Minimum System Requirements... 3 Installation Steps... 4 Event/Audit Logs...11 Bypassing the TAM E-SSO: Kiosk Adapter Agent...11 Installing a Link to TAM E-SSO: Desktop Password Reset Agent...11 Authenticating to TAM E-SSO: Kiosk Adapter...12 Upgrading to TAM E-SSO: Kiosk Adapter 6.0...12 Uninstalling TAM E-SSO: Kiosk Adapter...13 1

Welcome to TAM E-SSO: Kiosk Adapter IBM Tivoli Access Manager for Enterprise Single Sign-On: Kiosk Adapter (TAM E-SSO: Kiosk Adapter) delivers a secure and easy to use and administer solution that addresses the needs of traditional Single Sign-Off in a kiosk environment. This solution provides user identification to the kiosk by prompting users to login with a Windows password or any supported primary authenticator. TAM E-SSO: Kiosk Adapter has a client-side agent that suspends or closes inactive sessions and seamlessly shuts down all applications. Installation Overview TAM E-SSO: Kiosk Adapter is installed as an add-on component to IBM Tivoli Access Manager for Enterprise Single Sign-On (TAM E-SSO). TAM E-SSO must be installed prior to installing TAM E-SSO: Kiosk Adapter. TAM E- SSO automatically recognizes TAM E-SSO: Kiosk Adapter once it is installed. The following is a brief overview of the steps that must be taken in order to successfully install TAM E-SSO: Kiosk Adapter. Each step is explained in detail later in this guide, Installation Steps. Review System Requirements Install TAM E-SSO Adjust settings in the TAM E-SSO Administrative Console Adjust Windows screen saver settings Install TAM E-SSO: Kiosk Adapter Restart Computer Note: If you are upgrading from TAM E-SSO: Kiosk Adapter 5.0x, please perform the steps in the Upgrade section before beginning the installation. 2

System Requirements In order for TAM E-SSO: Kiosk Adapter to install and function properly, your system must meet at least the following requirements. Minimum System Requirements TAM E-SSO version 5.04 and above (installed with an Authenticator and a Synchronizer) Microsoft Windows 2000 (SP2+), Windows XP (SP2), Windows Server 2003 Microsoft.NET 2.0 Internet Explorer 6.0 or higher with 256-bit encryption Pentium III 733 MHz 128 MB RAM ~ 3 MB disk space Make sure the following are installed with TAM E-SSO: A Synchronizer must be installed and set up A supported Authenticator must be installed and set up The following are NOT directly supported: TAM E-SSO GINA - the TAM E-SSO: Kiosk Adapter GINA and SSO GINA should not be used together. TAM E-SSO: Kiosk Adapter displays a warning and does not install if the SSO GINA is installed. TAM E-SSO: Kiosk Adapter does not support the TAM E-SSO backup/restore function. TAM E-SSO: Kiosk Adapter does not support the following TAM E-SSO specific capabilities: o Windows authentication v1 or v2 o Context-based automatic sync logon 3

Installation Steps Follow these steps to install and configure TAM E-SSO: Kiosk Adapter. Step 1: Review System Requirements Make sure you have carefully reviewed the system requirements. Step 2: Install TAM E-SSO TAM E-SSO: Kiosk Adapter works with TAM E-SSO version 5.x and above only. Install TAM E-SSO on your system. Any previous versions of TAM E-SSO must be uninstalled first. If you are upgrading from TAM E-SSO: Kiosk Adapter 5.x, please perform the steps in the Upgrade section before beginning the installation. Please note that you must perform a custom installation. A Primary Logon Method and any Synchronization Manager of your choice must be installed. Please refer to the TAM E-SSO Installation and Setup Guide for detailed instructions. Step 3: Adjust settings in the TAM E-SSO Administrative Console Before you install TAM E-SSO: Kiosk Adapter, you must adjust some TAM E-SSO Console settings to work with TAM E-SSO: Kiosk Adapter and configure the TAM E- SSO: Kiosk Adapter settings in the Console. Open the TAM E-SSO administrative console by pointing to Start > Programs > Passlogix > TAM E-SSO > TAM E-SSO Console. 1. Expand Kiosk Adapter. This is where applications are configured for TAM E- SSO: Kiosk Adapter. You can add, edit and delete all applications from this section. There are two types of applications: Applications to Leave Running on Session End Applications to Close on Session End To add applications to these lists, click Add, enter the Process Path Key, and click OK. The Process Path Key is the name of the process executable, such as IEXPLORER.EXE is the process path key for Internet Explorer. Note: Please refer to the TAM E-SSO Console Help for more information about adding applications. 2. Right-click Global Agent Settings, point to Import, click From Live HKLM. Expand Live. 3. Set up Primary Logon Method. a. Expand Primary Logon Methods, and click on the Primary Logon Method installed. b. Set up the Required settings for the Primary Logon Method, if applicable. SSL may need to be turned on or off. This will vary 4

4. Set up Sync. according to your setup. Please refer to the TAM E-SSO Console Help for detailed instructions. a. Expand Synchronization and click on the Synchronization Manager you installed. This will vary according to your setup. Please refer to the TAM E-SSO Console Help for detailed instructions on setting up Sync. Note to Active Directory Users: If you will be using LDAP auth against Active Directory sync, perform the following steps: 1. Expand Active Directory and click Advanced. 2. For Credentials to Use, select Use Active Directory server account only. 5. Click on Synchronization. Check the Delete Local Cache and change setting to Delete. This setting deletes user's data files and registry keys upon shutdown of the agent. 6. Expand End User Experience and click Setup Wizard. Check the Enable/disable First Time Use (FTU) wizard and change setting to Hide. This setting hides the FTU wizard. 7. Click Kiosk Adapter. This is where you can set up the TAM E-SSO: Kiosk Adapter settings. Adjust the following settings to your preference: Setting Close suspended sessions after how many seconds Close sync/auth dialog after how many seconds Event Log Machine Name Description Determines the amount of time (in seconds) of inactivity after which TAM E-SSO: Kiosk Adapter should close a session. Default is 600 seconds. Enter the amount of time (in seconds) of inactivity after which TAM E-SSO: Kiosk Adapter should close a sync dialog or authentication dialog. The name of the local machine where TAM E-SSO: Kiosk Adapter events should be logged. Event Log Name Enter the name of the Windows event log where TAM E- SSO: Kiosk Adapter events should be logged. How should we determine which applications to close Lock session when only applications open are those configured to be left running on session Controls how TAM E-SSO: Kiosk Adapter should close applications. The choices are: Do not close any applications Only close applications configured to be closed on session end (Default) Close all applications except those configured to be left running on session end Determines whether TAM E-SSO: Kiosk Adapter should lock a session (after a specified period of time) if only applications open are those configured to be left running on session end. 5

running on session end Yes No (Default) Note: If Yes is selected, at least one application must be configured to be left running on session end. These applications are configured in the Kiosk Adapter Applications to Leave Running on Session End list. Setting Lock the session after how many seconds Number of times to process termination Restart Computer Show the tray icon Shutdown Computer Description Enter the amount of time (in seconds) before TAM E- SSO: Kiosk Adapter should check for applications that are configured to be left running on session end. This setting only needs to be entered if the above setting, Lock session when only applications open are those configured to be left running on session end, is set to Yes. Default is 180 seconds. Enter the number of times that TAM E-SSO: Kiosk Adapter should process the termination of an application. This setting instructs the termination process to loop a certain number of times (or until it is done), which ever comes first. This allows TAM E-SSO: Kiosk Adapter to react to an application if it displays multiple screens during the termination process. Determines whether the restart computer option is enabled in the TAM E-SSO: Kiosk Adapter Desktop Manager. Disable (Default) Enable Note: Even if this setting is enabled, the option may still be disabled if the Kiosk account does not have sufficient privileges. Determines whether the TAM E-SSO: Kiosk Adapter tray icon should be shown. Show (Default) Do not show Determines whether the shutdown computer option is enabled in the TAM E-SSO: Kiosk Adapter Desktop Manager. Disable (Default) Enable Note: Even if this setting is enabled, the option may still be disabled if the Kiosk account does not have sufficient privileges. 6

8. Expand Kiosk Adapter and click Advanced. This is where you can set up the TAM E-SSO: Kiosk Adapter s Advanced settings. Adjust the following settings to your preference: Setting Show confirmation message when restarting kiosk Show confirmation message when shutting down kiosk Show confirmation message when starting a new session Description This setting determines whether a user should be prompted with a confirmation message after choosing to restart the kiosk. This setting determines whether a user should be prompted with a confirmation message after choosing to shut down the kiosk. This setting determines whether a user should be prompted with a confirmation message after choosing to start a new session. This message appears only if there is an existing session open. 9. Expand Kiosk Adapter, Advanced, and click Special Tasks. This is where you can set up the tasks (lists of commands) that should execute when Kiosk Adapter actions occur. For each set of tasks, select the checkbox and click... to open the Edit List dialog box. Type one command on each line; end each line by clicking Enter. Do not use any other delimiter characters. Adjust the following settings to your preference: Setting After session is closed After starting a new session Before starting a new session Description Command(s) that will run after a session is closed. Command(s) that will run after a new session is started. Command(s) that will run before a new session is started. 10. Expand Kiosk Adapter, Desktop Manager, and click Company Logo. This is where you can customize the look and feel of TAM E-SSO: Kiosk Adapter s Desktop Manager by adding your company s logo. Adjust the following settings to your preference: Setting Location of the logo file Logo height (in pixels) Logo width (in pixels) Logo X coordinate (in pixels) Description Fully qualified path and filename to the logo file. Click the... button to locate the file. The height of the logo (in pixels). The default is 300. The width of the logo (in pixels). The default is 300. The X coordinate for the logo image. This is positioned relative to the Status image on the Kiosk Adapter Desktop screen. If this value is negative, the logo will 7

Setting Logo Y coordinate (in pixels) Description appear to the left of the Status image. Note: Negative values are represented by large positive numbers in the registry. For example: -1 = 4294967295 and -2 = 4294967294. The Y coordinate for the logo image. This is positioned relative to the Status image on the Kiosk Adapter Desktop screen. If this value is negative, the logo will appear above the Status image. Note: Negative values are represented by large positive numbers in the registry. For example: -1 = 4294967295 and -2 = 4294967294. 11. Expand Kiosk Adapter, Desktop Manager, and click MOTD (Message of the Day). This is where you can upload a message on TAM E-SSO: Kiosk Adapter s Desktop Manager, for example, a HIPAA compliance reminder. This message will be displayed when a new session is unlocked.. Adjust the following settings to your preference: Setting Message of the Day (MOTD) MOTD height (in pixels) MOTD width (in pixels) MOTD X coordinate (in pixels) MOTD Y coordinate (in pixels) Description Message text to provide on the Kiosk Adapter desktop manager. This message will be displayed when a new session is unlocked. The height of the message of the day (in pixels). The default is 300. The width of the message of the day (in pixels). The default is 300. The X coordinate for the message of the day. This is positioned relative to the Status image on the Kiosk Adapter Desktop screen. If this value is negative, the message will appear to the left of the Status image. Note: Negative values are represented by large positive numbers in the registry. For example: -1 = 4294967295 and -2 = 4294967294. The Y coordinate for the message of the day. This is positioned relative to the Status image on the Kiosk Adapter Desktop screen. If this value is negative, the message will appear above the Status image. Note: Negative values are represented by large positive numbers in the registry. For example: -1 = 4294967295 and -2 = 4294967294. 8

12. Once all the settings have been configured, they must be exported to the HKLM. Right-click Live and click Write to Live HKLM. A message asks if you are sure you want to apply the global agent settings in Live to the HKLM. Click Yes. 13. It is recommend that CheckForParentProcess to be 0 for LDAPAuth. This is set by default by the TAM E-SSO 5.x installer. Step 4: Setting up Support for User-specific Time-out Values Note: This step is optional. TAM E-SSO: Kiosk Adapter "suspend" and "shutdown" time-out values can be specified by user or role/groups. For example, in a hospital, a doctor and nurse group may be set up. The doctor group may need to have a longer time-out value than a nurse group and the doctor group should be able to "Shutdown" the kiosk, but not the nurse group. This feature provides Administrative Overrides and Configuration Object (CO) settings support for TAM E-SSO: Kiosk Adapter. TAM E-SSO: Kiosk Adapter reads the setting from the Administrative Overrides in the user's TAM E-SSO Storage Manager at the appropriate time and then applies those settings. This allows you to set different suspend and shutdown time-out values for different users and user roles/groups. In the TAM E-SSO Administrative Console, the following are the settings where these values are specified: Global Agent Settings > Live > Kiosk Adapter: "Close Suspended Session after how many seconds" Global Agent Settings > Live > Kiosk Adapter: "Shutdown Computer" Two Global Agent Registry keys must be set up and assigned different values for doctors and nurses (or any other groups). This is can only done by CO and Administrative Overrides where the registry keys are located on the Active Directory server and different registry keys are passed back to the desktop depending on the logged in user group. The following is an example of the steps that should be taken to set this up: Note: Please refer to the TAM E-SSO Console Help for detailed instructions on setting up CO s and Administrative Overrides. 1. On Active Directory Server, create user groups, for example, "Doctors" and "Nurses". 2. Add the appropriate users to each group. 3. In the TAM E-SSO Administrative Console, create two new Global Agent keys: "Doctors" and "Nurses". 4. Configure the Synchronizer with CO Support. 5. Open the new Doctors Global Agent key and select the "Security" tab. 6. Remove "Authenticated Users" from the list. 7. Add the "Doctors" group to the list. 9

8. Do the same for the Nurses Global Agent key (steps 5-7). 9. Write these settings to the HKLM (Tools > Write Global Agent Settings to HKLM). 10. Use the Configure SSO Support Wizard to upload these Global Agent Registry keys to the Active Directory server. 11. Install TAM E-SSO: Kiosk Adapter. Step 5: Adjust Windows Screen Saver settings The TAM E-SSO: Kiosk Adapter desktop manager has a lock that is triggered by the normal OS-level session lock timeout (the OS inactivity time value). To change this value, open the desktops Display Properties dialog (right-click on the desktop and click Properties) and click the Screen Saver tab. Select a Screen Saver and change the Wait time (default of 15 minutes) to the desired amount of time (in minutes) a session should be inactive before TAM E-SSO: Kiosk Adapter suspends the session. Step 6: Install TAM E-SSO: Kiosk Adapter Follow these steps to install and configure the TAM E-SSO: Kiosk Adapter Client Agent. 1. Close all programs. 2. Open the TAM E-SSO KA directory on the CD-ROM. 3. Double-click the TAM E-SSO Kiosk Adapter.msi file to begin the installation. 4. The Welcome Panel appears. Click [Next>]. 5. The License Agreement panel appears. Read the license agreement carefully. Select I accept the terms in the license agreement and click [Next>] to continue. 6. Select the Complete setup type and click [Next>]. 7. TAM E-SSO: Kiosk Adapter is ready to be installed. Click [Install>]. 8. Wait for the installation to complete. When it is done, click [Finish]. 9. TAM E-SSO: Kiosk Adapter prompts you to restart your computer. Step 7: Restart Computer. After completing the installation of TAM E-SSO: Kiosk Adapter, you are prompted to restart your computer. Upon restart, TAM E-SSO: Kiosk Adapter removes the TAM E- SSO task bar menu and replaces it with its own menu, which integrates the TAM E- SSO menu into it. TAM E-SSO: Kiosk Adapter disables the following TAM E-SSO menu options: Change Primary Logon Shutdown TAM E-SSO Backup/Restore 10

Note: TAM E-SSO: Kiosk Adapter removes the TAM E-SSO userinit entries. If TAM E-SSO: Kiosk Adapter is uninstalled, you will need to run repair your installation of TAM E-SSO through the Add/Remove Programs dialog. See the next section, Uninstalling TAM E-SSO: Kiosk Adapter. Event/Audit Logs TAM E-SSO: Kiosk Adapter logs TAM E-SSO: Kiosk Adapter Agent events to Windows Event Log. The Windows Event Log can be on the local machine or on a remote machine. Windows Event Log can be named one of the three known log names, or can be given a custom log name. These settings are configured in the TAM E-SSO Admin Console. Bypassing the TAM E-SSO: Kiosk Adapter Agent If needed, the TAM E-SSO: Kiosk Adapter can be bypassed when a kiosk is started up. The TAM E-SSO: Kiosk Adapter Agent will not start if you hold the Shift key down when logging into the computer. Installing a Link to TAM E-SSO: Desktop Password Reset Agent A link to TAM E-SSO: Desktop Password Reset Agent can be installed to the TAM E- SSO: Kiosk Adapter s home page. This allows users to reset their own kiosk password (i.e. AD via LDAP auth) using TAM E-SSO: Desktop Password Reset Agent. A link to the TAM E-SSO: Desktop Password Reset Agent Client can be installed as a DOS command, using the following command syntax: msiexec /i [/q] c:\v-go_tam E-SSO: Kiosk AdapterAgent.msi programurls /q Quiet mode: suppress all installer user interface messages. Refer to the description of other Windows Installer command line options for msiexec at http://msdn.microsoft.com. programurls (required): REG_RESETURL=" http://host /vgoselfservicereset/resetclient/default.aspx" REG_CHECKSTATUSURL="http://host /vgoselfservicereset/resetclient/checkstatus.aspx" where: host is the server name (or domain name/ip address) and path of the folder that holds the TAM E-SSO: Desktop Password Reset Adapter service root folder. 11

Authenticating to TAM E-SSO: Kiosk Adapter TAM E-SSO: Kiosk Adapter supports TAM E-SSO: Authentication Adapter for all authentication events. All authentication events take place within the authenticator so that TAM E-SSO: Kiosk Adapter does not need to be configured for different authenticators. TAM E-SSO: Kiosk Adapter communicates with every TAM E-SSO: Authentication Adapter authenticator in the same way. When configured with smart card, proximity card, or other presence-sensing authenticator, TAM E-SSO: Kiosk Adapter automatically initiates a session when an authenticator is detected. When configured with smart card, proximity card, or other presence-sensing authenticator, TAM E-SSO: Kiosk Adapter automatically suspends a session an authenticator is no longer present. Upgrading to TAM E-SSO: Kiosk Adapter 6.0 If you are performing an upgrade from TAM E-SSO: Kiosk Adapter 5.0x to 6.00, certain steps will need to be taken to ensure a successful upgrade. The following steps apply to an environment where TAM E-SSO 5.0x is installed with TAM E-SSO: Kiosk Adapter 5.0x: 1. Uninstall TAM E-SSO: Kiosk Adapter 5.0x and TAM E-SSO 5.0x. 2. Install TAM E-SSO 5.04 or 6.00. 3. Install TAM E-SSO: Kiosk Adapter 6.0. 12

Uninstalling TAM E-SSO: Kiosk Adapter Follow these steps to uninstall TAM E-SSO: Kiosk Adapter. 1. Click Start > Settings > Control Panel. 2. Open Add/Remove Programs. 3. Select IBM Tivoli Access Manager for Enterprise Single Sign-On: Kiosk Adapter and click [Remove]. 4. Follow the prompts to uninstall TAM E-SSO: Kiosk Adapter. 5. TAM E-SSO: Kiosk Adapter prompts you to restart your computer. Click [No]. 6. Go back into the Add/Remove Programs dialog. Select IBM Tivoli Access Manager for Enterprise Single Sign-On and click [Change]. 7. TAM E-SSO Install Shield wizard appears. Click [Next>]. 8. Select Repair and click [Next>]. 9. TAM E-SSO: Kiosk Adapter is ready to be installed. Click [Install>]. 10. Wait for the installation to complete. When it is done, click [Finish]. 11. Restart your computer. Note: TAM E-SSO: Kiosk Adapter removes any TAM E-SSO Global Agent Settings that are changed while TAM E-SSO: Kiosk Adapter is installed. If TAM E- SSO: Kiosk Adapter is uninstalled, you will need to re-apply these settings to TAM E-SSO. For example, under Synchronization, change Delete Local Cache back to Do Not Delete. 13

Appendix. Notices This information was developed for products and services offered in the U.S.A. IBM may not offer the products, services, or features discussed in this document in other countries. Consult your local IBM representative for information on the products and services currently available in your area. Any reference to an IBM product, program, or service is not intended to state or imply that only that IBM product, program, or service may be used. Any functionally equivalent product, program, or service that does not infringe any IBM intellectual property right may be used instead. However, it is the user s responsibility to evaluate and verify the operation of any non-ibm product, program, or service. IBM may have patents or pending patent applications covering subject matter described in this document. The furnishing of this document does not give you any license to these patents. You can send license inquiries, in writing, to: IBM Director of Licensing IBM Corporation North Castle Drive Armonk, NY 10504-1785 U.S.A. For license inquiries regarding double-byte (DBCS) information, contact the IBM Intellectual Property Department in your country or send inquiries, in writing, to: IBM World Trade Asia Corporation Licensing 2-31 Roppongi 3-chome, Minato-ku Tokyo 106-0032, Japan The following paragraph does not apply to the United Kingdom or any other country where such provisions are inconsistent with local law: INTERNATIONAL BUSINESS MACHINES CORPORATION PROVIDES THIS PUBLICATION AS IS WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF NON-INFRINGEMENT, MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. Some states do not allow disclaimer of express or implied warranties in certain transactions, therefore, this statement may not apply to you. This information could include technical inaccuracies or typographical errors. Changes are periodically made to the information herein; these changes will be incorporated in new editions of the publication. IBM may make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time without notice. Any references in this information to non-ibm Web sites are provided for convenience only and do not in any manner serve as an endorsement of those Web sites. The materials at those Web sites are not part of the materials for this IBM product and use of those Web sites is at your own risk. IBM may use or distribute any of the information you supply in any way it believes appropriate without incurring any obligation to you. Copyright IBM Corp. 2006 15

Licensees of this program who wish to have information about it for the purpose of enabling: (i) the exchange of information between independently created programs and other programs (including this one) and (ii) the mutual use of the information which has been exchanged should contact: IBM Corporation 2ZA4/101 11400 Burnet Road Austin, TX 78758 U.S.A. Such information may be available, subject to appropriate terms and conditions, including in some cases, payment of a fee. The licensed program described in this information and all licensed material available for it are provided by IBM under terms of the IBM Customer Agreement, IBM International Program License Agreement, or any equivalent agreement between us. Any performance data contained herein was determined in a controlled environment. Therefore, the results obtained in other operating environments may vary significantly. Some measurements may have been made on development-level systems and there is no guarantee that these measurements will be the same on generally available systems. Furthermore, some measurements may have been estimated through extrapolation. Actual results may vary. Users of this document should verify the applicable data for their specific environment. Information concerning non-ibm products was obtained from the suppliers of those products, their published announcements or other publicly available sources. IBM has not tested those products and cannot confirm the accuracy of performance, compatibility or any other claims related to non-ibm products. Questions on the capabilities of non-ibm products should be addressed to the suppliers of those products. Trademarks The following terms are trademarks or registered trademarks of International Business Machines Corporation in the United States, other countries, or both: AIX DB2 developerworks eserver IBM iseries Lotus Passport Advantage pseries RACF Rational Redbooks Tivoli WebSphere zseries Microsoft, Windows, Windows NT, and the Windows logo are trademarks of Microsoft Corporation in the United States, other countries, or both. 16 IBM Tivoli Access Manager for Enterprise Single Sign-On: Kiosk Adapter Installation and Setup Guide

Intel, Intel Inside (logos), MMX and Pentium are trademarks of Intel Corporation in the United States, other countries, or both. UNIX is a registered trademark of The Open Group in the United States and other countries. Linux is a trademark of Linus Torvalds in the U.S., other countries, or both. Java and all Java-based trademarks are trademarks of Sun Microsystems, Inc. in the United States, other countries, or both. Other company, product, and service names may be trademarks or service marks of others. Appendix. Notices 17

18 IBM Tivoli Access Manager for Enterprise Single Sign-On: Kiosk Adapter Installation and Setup Guide

Printed in USA SC32-1997-00

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback