CA API Gateway 9.1

9.4 9.1

Install the Tivoli Access Manager Assertion

The Tivoli Access Manager (TAM) custom assertion instructs the gateway to delegate the authentication and authorization tasks required to gain access to a protected service to the IBM Tivoli Access Manager server (version 5.1 or 6.0).
gateway92
The Tivoli Access Manager (TAM) custom assertion instructs the
CA API Gateway
 to delegate the authentication and authorization tasks required to gain access to a protected service to the IBM Tivoli Access Manager server (version 5.1 or 6.0).
This section describes how to install and configure the custom assertion on the Gateway. When configuration is complete, the Authenticate using Tivoli Access Manager Assertion appears in the Policy Manager, under both the Access Control and Custom Assertions palettes.
Requirements
Verify that you have the following files before beginning:
  • For RHEL 6 environments, the following files are required:
    libXext-1.1-3.el6.x86_64.rpm
    libXi-1.3-3.el6.x86_64.rpm
  • An IBM Java Runtime Environment:
    ibm-java-x86_64-sdk-<version>.1.x86_64.rpm
    (where “<version>” is version 6.0.9 or later)
  • Tivoli Access Manager Policy Director packages:
    PDJrte-PD-6.0.0-22.i386.rpm
    PDlic-PD-6.0.0-0.i386.rpm
    PDWPM-PD-6.0.0-22.i386.rpm
  • Tivoli Access Manager custom assertion package:
    ssg-tam-<version>.noarch.rpm
    This file is located in the "CA API Gateway CustomAssertions" distribution archive.
  • Access to these prerequisite 64-bit files:
    compat-libstdc++-33-3.2.3-47.3.x86_64.rpm
    libgcc-4.1.2-46.el5_4.2.i386.rpm
    libXext-1.1-3.el6.x86_64.rpm
    libXi-1.3-3.el6.x86_64.rpm
    libXp-1.0.0-8.1.el5.x86_64.rpm
    libXtst-1.0.1-3.1.x86_64.rpm
    xorg-x11-deprecated-libs-6.8.2-1.EL.13.20.x86_64.rpm
Install Prerequisite Files
Begin by installing the following prerequisite 64-bit package files.
To install the prerequisite files:
  1. Log in as
    ssgconfig
     and open a privileged shell from the Gateway configuration menu.
  2. Stop the Gateway:
    # service ssg stop
  3. If running Red Hat Enterprise Linux version 6, install these RPM files:
    # rpm -ivh libXext-1.1-3.el6.x86_64.rpm
# rpm -ivh libXi-1.3-3.el6.x86_64.rpm
  4. Navigate to the directory containing the prerequisite files and install them with the following commands:
    # rpm -ivh libX*
# rpm -ivh --force libgcc-4.1.2-46.el5_4.2.i386.rpm
# rpm -ivh --force compat-libstdc++-33-3.2.3-47.3.x86_64.rpm
# ln -sf /usr/lib64/libstdc++.so.6.0.8 /usr/lib64/libstdc++.so.5
  5. If you are running Red Hat Enterprise Linux, install this RPM file:
    # rpm -ivh xorg-x11-deprecated-libs-6.8.2-1.EL.13.20.x86_64.rpm
  6. Install IBM Java with this command:
    # rpm -ivh --nodeps ibm-java-x86_64-sdk-<version>.1.x86_64.rpm
    By default, IBM Java is installed in the “/opt” directory.
Install Policy Director
To install the TAM 6.0 Policy Director component:
  1. Navigate to the directory containing the Policy Director files and run the following commands:
    # rpm -ivh PDlic-PD-6.0.0-0.i386.rpm
# rpm -ivh PDJrte-PD-6.0.0-22.i386.rpm
# rpm -ivh PDWPM-PD-6.0.0-22.i386.rpm
  2. Verify that the PolicyDirector folder is created in “/opt” after installation is finished.
The next step is to configure the Tivoli Access Manager runtime environment. Choose the appropriate procedure based on your Gateway instances:

Content feedback and comments