Symantec IGA

Hi, i am installing new IM servers.

In the old installation (IM12.6 SP7), the customer has configured JBOSS to use datasource with integrated security (Windows authentication)
This is a snippet of the standalone-full-ha.xml, e.g for objectstore datasource:


We are trying to configure the new IM (14.3 CP2) servers in the same way. Anyway we faced the following issue:
Jboss starts, but then the tasks in IM stucks (status pending, never complete). 

Instead if we use OOTB datasource ( with SQL Server native authentication) everything works fine.

This is the OOTB configuration of the datasource (does not use integrated security , and the driver is sqljdbc)
 
Does IM support datasource with integratedsecurity? ( regarding this point i would highlight that in the old environment it works)

Best Regards
Claudio
 

Hi Claudio
Our documentation has no reference to integrated security used for IM datasources and it is not a configuration used during development / QA.
While it might be able for one to configure JBoss / Wildfly / IM with integrated authentication, it is not officially supported and therefore Broadcom Support is limited with the assistance it can provide on this topic.

Perhaps other customers could share their experience with a similar configuration. You might want to share the exact application server and release you are using with IM 14.3 CP2.
Regards
Rinat
Original Message:
Sent: 02-26-2021 05:59 AM
From: Claudio Fina
Subject: Identity Manager - Jboss and datasource with integrated security

Hi, i am installing new IM servers.

In the old installation (IM12.6 SP7), the customer has configured JBOSS to use datasource with integrated security (Windows authentication)
This is a snippet of the standalone-full-ha.xml, e.g for objectstore datasource:

<datasource jta="true" jndi-name="java:/iam/im/jdbc/jdbc/objectstore" pool-name="iam_im-imobjectstoredb-ds" enabled="true" use-java-context="true">

<connection-url>jdbc:sqlserver://192.168.182.225:1433;selectMethod=cursor;DatabaseName=CAIAM_IMStore_Demo_1267;integratedSecurity=true</connection-url>

<driver>xasqlserver</driver>

We are trying to configure the new IM (14.3 CP2) servers in the same way. Anyway we faced the following issue:
Jboss starts, but then the tasks in IM stucks (status pending, never complete).

Instead if we use OOTB datasource ( with SQL Server native authentication) everything works fine.

This is the OOTB configuration of the datasource (does not use integrated security , and the driver is sqljdbc)
 

<datasource enabled="true" jndi-name="java:/iam/im/jdbc/jdbc/objectstore" jta="false" pool-name="iam_im-imobjectstoredb-ds" use-java-context="true">

<connection-url>jdbc:sqlserver://192.168.182.225:1433;selectMethod=cursor;DatabaseName=CAIAM_IMStore_Demo_1267</connection-url>

<driver>sqljdbc</driver>

Does IM support datasource with integratedsecurity? ( regarding this point i would highlight that in the old environment it works)

Best Regards
Claudio

Hi Rinat,
the application server is Wildfly8.2.1  (both in the old and the new server)
This is a kit provided from the customer that includes a couple of extra module they use for some custom code

BR

Claudio

Original Message:
Sent: 03-01-2021 07:58 AM
From: Rinat Matityahu
Subject: Identity Manager - Jboss and datasource with integrated security

Hi Claudio
Our documentation has no reference to integrated security used for IM datasources and it is not a configuration used during development / QA.
While it might be able for one to configure JBoss / Wildfly / IM with integrated authentication, it is not officially supported and therefore Broadcom Support is limited with the assistance it can provide on this topic.

Perhaps other customers could share their experience with a similar configuration. You might want to share the exact application server and release you are using with IM 14.3 CP2.
Regards
Rinat
Original Message:
Sent: 02-26-2021 05:59 AM
From: Claudio Fina
Subject: Identity Manager - Jboss and datasource with integrated security

Hi, i am installing new IM servers.

In the old installation (IM12.6 SP7), the customer has configured JBOSS to use datasource with integrated security (Windows authentication)
This is a snippet of the standalone-full-ha.xml, e.g for objectstore datasource:

<datasource jta="true" jndi-name="java:/iam/im/jdbc/jdbc/objectstore" pool-name="iam_im-imobjectstoredb-ds" enabled="true" use-java-context="true">

<connection-url>jdbc:sqlserver://192.168.182.225:1433;selectMethod=cursor;DatabaseName=CAIAM_IMStore_Demo_1267;integratedSecurity=true</connection-url>

<driver>xasqlserver</driver>

We are trying to configure the new IM (14.3 CP2) servers in the same way. Anyway we faced the following issue:
Jboss starts, but then the tasks in IM stucks (status pending, never complete).

Instead if we use OOTB datasource ( with SQL Server native authentication) everything works fine.

This is the OOTB configuration of the datasource (does not use integrated security , and the driver is sqljdbc)
 

<datasource enabled="true" jndi-name="java:/iam/im/jdbc/jdbc/objectstore" jta="false" pool-name="iam_im-imobjectstoredb-ds" use-java-context="true">

<connection-url>jdbc:sqlserver://192.168.182.225:1433;selectMethod=cursor;DatabaseName=CAIAM_IMStore_Demo_1267</connection-url>

<driver>sqljdbc</driver>

Does IM support datasource with integratedsecurity? ( regarding this point i would highlight that in the old environment it works)

Best Regards
Claudio