You may want to specify whether web clients can log in using username/password, or you may want to specify more specifically which URLs will be secured by SiteMinder. To do this, you use TIBCO ActiveMatrix Administrator to edit the substitution variables of the ActiveMatrix BPM application that govern SiteMinder use.
Procedure
In TIBCO ActiveMatrix Administrator, select
Applications
.
From the
Applications window, expand
amx.bpm.app > System
Select
amx.bpm.app.
From the
amx.bpm.app window, select the
Substitution Variables tab.
You can click
Substitution Variable Name to display the variables alphabetically, which is useful here as the substitution variables you are interested in all start with 'auth' and are at the beginning of the list.
There are three substitution variables relevant to SiteMinder which you can edit.
Variable
Description
Default
authAllowUsername
When the default method of authentication is not
LdapAsp, this variable governs whether the Web client can also login using username/password.
If
True, when the client includes the HTTP Request Header
X-TIBCO-BPM-Authenticate (with any non-null value), authentication follows the username/password behavior.
False
authDefaultMethod
Names the default method of Web-IT authentication, that is, authentication for web applications and REST services. Possible values are:
LdapAsp - username/password authentication.
SiteminderAsp - SiteMinder authentication.
KerberosAsp - Kerberos authentication.
LdapAsp
authSiteMinderService
Names the URL context of the resource to be secured by SiteMinder. The default value "/" will secure all URLs, but a more specific URL can be specified.
