Once you have made it this far, the last step is configuring the WebAccess AppMark. This will allow one touch access to everything protected by Access Manager, including WebAccess. If anyone needs to use this, then they must add their own conditions for which this solution needs to be triggered Logic: Make sure to use port and enable SSL on the web server configuration tab. The actions when triggered, reads the photo attribute value for the user stored in eDirectory, changes it to the needed format and makes the REST call to GroupWise system.
|Date Added:||3 March 2016|
|File Size:||65.13 Mb|
|Operating Systems:||Windows NT/2000/XP/2003/2003/7/8/10 MacOS 10/X|
|Price:||Free* [*Free Regsitration Required]|
The first is to configure the list to accept a wider range of User-Agent strings, although that may involve ongoing maintenance as new devices are created. Hope this helps and please leave any comments on any improvements that you think can benefit others.
Log in to Reply. You must be logged in to post a comment.
Groupwise 2014 REST driver fails to add user – return status code: 404
Troubleshooting is outside the scope of this tutorial, but the SAML tracer Firefox extension and the IDP logs can be quite valuable tools for identifying other issues. You must be logged in to post a comment. The bug is still open, but I have posted a workaround on the forums:. To get around this, we need to enable password fetch in Access Manager and configure it as a post authentication method in the SAML configuration more on the post authentication method later.
First, we need to be sure that Universal Password is enabled in eDirectory for the administrative account that Access Manager uses.
CloudAccess and Access Manager can use different user stores, as long as you can find an attribute that is consistent between them. At this point, you should be able to test the federation by logging into CloudAccess from your desktop and selecting the NAM AppMark that you configured.
It just worked for at least one person, and perhaps it will be useful for you too. It just worked for at least one person, and perhaps it will be useful for you too. This feature is particularly useful for BYOD situations, such as when an employee wishes imd access GroupWise, but does not wish to have corporate restrictions or store their corporate password on their personal device.
Groupwise REST driver fails to add user – return status code:
Be sure to test in a non-production environment. A few are listed here:. After this is done, configure an identity injection for Access Manager to inject the username and password into an authorization header and enable this groipwise the protected resource see related screen shot.
These options are outlined in the first two images below. If anyone needs to use this, then they must add their own conditions for which this solution needs to be triggered Logic: By itself, this is a nice feature to have enabled because it adds a layer of protection for the WebAccess server, and it is convenient for desktop users. I forgot to mention this in the original post, but there is a known issue with the IDP losing the redirect when using a post authentication method.
The default WebAccess configuration does not recognize all mobile and tablet devices, so you have two im for providing the proper interface to all devices. This tutorial has three main components: Adjust them as required to match the use case in your environment as in the example policies, particular description attribute values are used to trigger the needed actions for demonstration purposes.
Make sure to use port and enable SSL on the web server configuration tab. This may be challenging if you have not configured Access Manager as an SP before, but the screen shots should help guide you in this configuration.
Determine the actual GroupWise group name to which the user needs to added or removed. Access ManagerTechnical Solutions. In any traditional implementation, the user and group objects are synchronized between IDVault and the connected application.
Be sure to test in froupwise non-production environment. If not, here are some common pitfalls to look for:. February 10, at 2: A query needs to be sent to GroupWise system to search for a group with a matching CN. Leave a Reply Cancel reply You must be logged in to post a comment. This can be determined in means that best suits your business use case. However since the number of groups were high in number, it was a requirement from one of our customers to be able to manage GroupWise distribution list membership without enabling the group object sync in the IDM connector filter.