Using the Edit TIBCO ActiveMatrix BPM Instance Wizard

To configure ActiveMatrix BPM to use Kerberos by using the Edit TIBCO ActiveMatrix BPM Instance wizard, run the TIBCO Configuration Tool and select the Edit TIBCO ActiveMatrix BPM Instance wizard. Use the wizard to edit the ActiveMatrix BPM application.

1. On the machine on which ActiveMatrix BPM is running, run TIBCO Configuration Tool:

   TIBCO_HOME\bpm\n.n\bin\tct

   where TIBCO_HOME is the directory into which ActiveMatrix BPM is installed and n.n is the ActiveMatrix BPM version number.

2. In the TIBCO Configuration Folder dialog, ensure that an appropriate folder is selected, and click OK.
3. In the Create new configurations dialog, click Edit TIBCO ActiveMatrix BPM Instance.
   The Edit TIBCO ActiveMatrix BPM Instance wizard is started.
4. On the Welcome page, ensure that the correct environment name and application name are displayed. In the Edit Action to be Performed list, ensure that Edit AMX-BPM Application is selected.
5. On the Administrator Server Configuration page, ensure that the details are correct, and click Next.
6. On the Select Edit Configurations page, select the Edit the type of authentication used by AMX-BPM check box, then click Next.
7. On the Authentication Configuration page, select Kerberos. If you want to allow web clients to log in using username and password as well, select the Allow also basic username authentication check box. Click Next.
8. On the Kerberos Configuration page, enter the details requested. Click Next.

   Field/Button	Description
   Kerberos Realm	The name of the domain where the Kerberos configuration applies. For example, XYZCOMPANY.COM.
   Key Distribution Center	The name or IP address of the host running the Kerberos KDC for the Kerberos realm.
   Configuration File Options
   Selected Configuration File Type	Identifies the location of the Kerberos generated, host configuration file, from which the remaining configuration properties will be taken. Choose between: System Specific Default Location If the Kerberos installation is on the same machine as the Shared Resource installation. Custom File Location If the configuration file has been copied to the same machine as the Shared Resource installation. Generated If the configuration file is not available, but the properties are known. Creates a local file at a given location.
   The following properties assume Generated has been selected. These values will be available from your Kerberos installation.
   Configuration File Name	The name (without path) of the file that will be generated to record the property values. You can use any name.
   Default DNS Domain	The domain used to expand hostnames when translating Kerberos 4 service principals to Kerberos 5 principals. Domain names should be in lower-case.
   Service Principal Name (SPN)	The principal name of the service that is to be protected. When a service ticket is received, it is verified, using the KDC, against the SPN specified here.
   Key Tab File Name:	The path to the key tab file containing the credentials of the service to be verified against the incoming request.

9. On the Summary page, click Configure.
10. When the specified ActiveMatrix BPM application has been edited, click Close.
11. In the Create new configurations dialog, click Close.

Copyright © Cloud Software Group, Inc. All rights reserved.