Setting up Content Manager for single sign-on

Run a PowerShell script on the Content Manager server to configure single sign-on for your Content Manager.

Before you begin

You must be logged on as an administrator user to perform this task.

PowerShell must be installed on your target system.

Procedure

  1. Access your Content Manager server.
  2. If you want to specify your installation parameters up front, rather than while the script runs, create a plain text file with a name and location of your choosing, and fill it with lines of the format PROPERTY=VALUE, where PROPERTY is a property in the table below, and VALUE is a value that corresponds to the description for that property:
    PropertyDescription
    DirectoryServiceNameThe name of a Directory Service that contains groups that are mapped to Content Manager Groups. If you set this property to a value, the script ignores the value UserFullNameHeader.
    UserFullNameHeaderThe full name of the user, made available to the single sign-on server. The value of this property is ignored if DirectoryServiceName has a value.
    UserNameHeader
    The user name in the single sign-on server:
    • If you use CA SiteMinder, fill in SM_USER.
    • If you use IBM Tivoli Access Manager, fill in iv-user.
  3. Open Windows PowerShell from the Windows Start Menu.
  4. Navigate to %TRIDION_HOME%\bin\Configuration Scripts\.
  5. Enter one of the following:
    • If you created a file with property-value pairs, enter & .\SetupSSO.ps1 -pf FILE, where FILE is the full path and filename of the file you created.
    • If you did not create a file, enter & .\SetupSSO.ps1. The script prompts you for values for the properties.

What to do next

Single sign-on is configured for Content Manager and all its currently installed add-ons. If you add new add-ons later on, rerun this script.