Solution Summary
To achieve
The ClearTrust Administrator creates BusinessObjects Enterprise users, groups, resources, and entitlements. When a user first requests a protected resource, the RSA ClearTrust web server agent prompts the user for authentication credentials. The agent communicates with the RSA ClearTrust servers to establish authentication and determine if the user is authorized to access the requested resource. Following successful authentication and authorization, the user is forwarded to a script within the BusinessObjects Enterprise web application. This script retrieves the identity of the user by parsing an HTTP header variable and creates a personalized BusinessObjects Enterprise session.
Figure 1 illustrates a
| authentication & |
|
| authorization |
|
|
| ClearTrust |
Request |
| Servers |
|
| |
protected |
| shared users |
resources |
| and groups |
Web Server | proxy | LDAP Server |
and ClearTrust |
|
|
Agent |
|
|
|
| Application Server\ |
Figure 1: Integration deployment diagram |
| BusinessObjects |
| Enterprise |
Partner Integration Overview
Use UserID for SSO | Yes |
Use UserID for Personalization | Yes |
Recognize Authentication Type | Yes |
No | |
User Management (AdminAPI) | Via Shared User Repository (LDAP) |
Page: 2