Skip to main content
Start a Conversation

This post is more than 5 years old

Solved!

Go to Solution

james_007_18739c

11 Posts

5334

May 25th, 2013 00:00

How to config SSO.conf in Ionix Smarts 9.2

Hi,

I am using EMC Ionix Smarts 9.2. I want know if it support SSO(single sign on), and how to config the SSO.conf file after installed it?

Thanks in advance!

Br,

james

BenimusIQ

12 Posts

June 4th, 2013 16:00

Hi James,

The LDAP script needs to be configured with the details of your LDAP installation, has this been done? Properties you need to set are:

  • Location of the LDAP servers
  • Base DN to search from
  • A username/password to use to bind to LDAP to look up account details
  • The groups in your AD environment that should have access to Smarts (@LDAPGROUPS and @LDAPADMINGROUPS)
  • Exceptions for any local user accounts you want to bypass LDAP (including admin accounts such as admin, BrokerPing, BrokerNonsecure, etc.)

You can also try setting the $LOGLEVEL to 9 and see if there are any errors returned. You can also use a utility like ldapread to make sure your LDAP settings work beforehand.

Just confirming the format of your environment, can you please make sure the full path name is used e.g. SM_AUTHORITY="IDENTIFY=sm_authority, AUTHENTICATE=/usr/bin/perl /opt/InCharge/SAM/smarts/local/conf/sm_authority.pl" (You have a spelling mistake in your entry above, SM_AUTHORUTY should have an I not a U)

Benjamin Johns

Senior Technology Consultant

iQ Consult Pty Ltd

BenimusIQ

12 Posts

May 26th, 2013 18:00

Hi James,

The sso.conf file is only used if you also have Watch4net 6.2 and are using the Companion UI virtual appliance to integrate the two products so that you can see the Smarts dashboards etc. from within Watch4net. Is this what you are trying to do?

If you are just trying to get LDAP/AD authentication to work with Smarts, it depends on the OS of the machine you have installed Smarts on.

If installed on a Windows machine, you can just add the users as username@domain (This is the long name of your domain e.g. company.local) to SAM in the Global Administration console, and then in your serverConnect.conf file add the users as follows:

*:username@domain: :All

And then they should be able to login using their domain accounts.

If you have installed Smarts on Linux, it is possible to get LDAP/AD authentication working, however you will need to have a custom SM_AUTHORITY and script set and I don't believe this is generally available. You may wish to contact EMC support to see if they will supply the script.

Benjamin Johns

Senior Technology Consultant

iQ Consult Pty Ltd

james_007_18739c

11 Posts

May 27th, 2013 00:00


Thanks Johns so much!

At the same time, I hope EMC support team can give me some more information!

Shyamjayachandr

19 Posts

May 28th, 2013 21:00

If you have access to pwoerlink,

Smarts 9.2 CUI and Watch4net Integration and Implementation Engineering Knowledge Transfer


free e learning  present in education.emc.com for using SSO for watych4net, Companion Ui and SMARTS. This should help

james_007_18739c

11 Posts

June 4th, 2013 06:00

I have had the LDAP replacement authentication script for smarts (sm_authority.pl)! But after I use:

sm_service install .. '--env=SM_AUTHORUTY=IDENTIFY=sm_authority,AUTHENTICATE=....sm_authority.pl'

The Domain manager couldn't be registered on Broker. And I found the sm_authority.pl file didn't do any work!

So I want to know If there are any other thing need to do?

Shyamjayachandr

19 Posts

June 4th, 2013 14:00

Are you trying to use LDAP for smarts authentication or setting up watch4net , cui and smarts integration with SSO?

If the former, check the sm_authority script to see if the script points to correct smarts install directory. if still not working, make sure ldap connectivity is present to the server you have smarts on. if still not working, contact emc support .

if latter, the documentation provided earlier should be sufficient enough to set up ss0 for watch4net and smarts.

james_007_18739c

11 Posts

June 6th, 2013 07:00

Thanks BenimusIQ so much! I have resolved this issue!

kailath

1 Message

April 5th, 2021 11:00

I inherited an old installation of EMC smarts which already has the sm_authority file .  But LDAP authentication is not enabled.  We are not using watch4net and the authentication is only for the console.   We running smarts on a Linux servers (multiple servers).  Can somebody help me with some pointers as to what needs to be done. 

DELL-Sam L

Moderator

 • 

7.5K Posts

April 5th, 2021 16:00

Hello kailath,

Here are a couple of guides that maybe of assistance.  https://dell.to/3dClfUn

 https://dell.to/3dyHniE

Was this post helpful?

View All

No Events found!

Top