hosted domains and UWC urls/access/login
i have several hosted domains -
i can login to them using user@hosteddomain/passwd login format
at the uwc login - but only if i use the top level (real domain)
domain as the address (e.g. go to foo.real.com:81/uwc).
if i go to the uwc url on the hosted domain e.g. my.hosted1.com:81/uwc -
and use either the user/passwd or user@hosteddomain/passwd
to login, i'm redirected to the top level domain, with the hosted domain in the url e.g. http://foo.realdomain.com:81/amserver/UI/Login?goto=http://my.hosted.com:81/uwc /&gotoOnFail=http://my.hosted.com:81/uwc/?err=1&module=LDAP&org=host ed.com, and taken to access manager.
i've set the hostname aliases as comma separated values (i have 3), and set the mappings for each hosted domain
in the AMconfig.properties,
#com.sun.identity.server.fqdnMap[<invalid-name>]=<valid-name>
com.sun.identity.server.fqdnMap[hosted1.com]=my.real.com
com.sun.identity.server.fqdnMap[hosted2.com]=my.real.com
com.sun.identity.server.fqdnMap[hosted3.com]=my.real.com
(is this correct?)
as well as allowing for hosted/virtual domains in the uwcauth file.
the realdomain also is the reversedns name for the machine - not sure if this is having some strange effect.
my /etc/hosts file has several lines for the same ip
e.g.
127.0.0.1localhost
192.168.1.10foo.realdomain.com foo foo. loghost mailhost
192.168.1.10my.hosted1.com mail.hosted1.com hosted1 hosted1.
192.168.1.10my.hosted2.com mail.hosted2.com hosted2 hosted2.
i'm able to collect and send mail from each of these via pop using user@hosted1.com/passwd login format - as well as via uwc when using the realdomain.com/uwc url and the user@hosted1.com logon format ...
[1821 byte] By [
starman7a] at [2007-11-26 18:11:53]
# 1
I think you need to look at the virtual domain section in the uwcauth.properties file for UWC.
# 2
thanks for the info. unfortunately i am even more confused.
i've tried to follow the instructions and learn from other posters:
http://forum.java.sun.com/thread.jspa?forumID=708&threadID=5063158
http://forum.java.sun.com/thread.jspa?forumID=708&threadID=5096491
still, logging in from the hosted uwc url reverts to access manager login screen.
i am most confused about the mapping in AMconfig.properties
mine looks like this:
com.sun.identity.server.fqdnMap[mail.hosted1.com]=my.realdomain.com
com.sun.identity.server.fqdnMap[mail.hosted2.com]=my.realdomain.com
com.sun.identity.server.fqdnMap[mail.hosted.com]=my.realdomain.com
i take the mail.hosted1.com to be the url that i will access uwc from on for the hosted domain - and my.realdomain.com to be the main uwc instance
and the other mapping in uwcauth.properties looks like:
mail.hosted1.com.isvirtualhostname=my.realdomain.com
mail.hosted2.com.isvirtualhostname=my.realdomain.com
mail.hosted3.com.isvirtualhostname=my.realdomain.com
i'm not sure if i have these mappings correct - because i'm confused by the documentation - it never refers to the mappings in terms that are understandable (e.g. it refers to either end of isvirtualhostname as virtualdomains) - the second url above seems to embrace that interpretation (e.g. webmail1.other.com.isvirtualhostname=webmail1.other.com and com.sun.identity.server.fqdnMap[webmail1.other.com]=webmail1.other.com) but that didn't really seem to be a mapping.
in any event, i have created each directory and the required files under WEB-INF/domain/ - e.g. hosted1.com hosted2.com hosted3.com
and have added the cookie domains as .hosted1.com .hosted2.com, etc.
in the amserver/amconsole under service configuration --> platform.
yet accessing uwc from mail.hosted1.com/uwc and logging in as uid/passwd redirs to a url like this:
http://my.realdomain.com:81/amserver/UI/Login?goto=http://mail.hosted1.com:81/u wc/&gotoOnFail=http://mail.hosted1.com:81/uwc/?err=1&module=LDAP&org =hosted1.com
my webserver is running on 81 - and works fine for the main uwc instance.
it would be nice to have a step-by-step for this, from ldap domain provisioning (for the hosted domain), adding a user (to the hosted domain), and then setting up the necessary files for enabling hosted domains (e.g. uwcauth.properties, AMconfig.properties, creating the directories and files under /opt/SUNWuwc/WEB-INF/domain, etc). the documentation is disparate on these, and in some cases written in terms that are confusing.
# 3
You're out of my personal depth with UWC.However, you might run a test against the old webmail interface, and let us know the results.You should be able to go to the url of your hosted domain, and log in as "uid" with your password.Perhaps Shane will weigh in, too.
# 4
Did you restart the webcontainer after making these changes to uwcauth and AMConifg.properties.?thanks,Ramya
# 5
> Did you restart the webcontainer after making these
> changes to uwcauth and AMConifg.properties.?
>
> thanks,
> Ramya
thanks ramya - yes of course i did, and also deleted the dir under ClassCache before restarting the server. i saw that you'd tried to help in one of the above mentioned posts. i also made the changes in two places - i have a uwcauth.properties file under /opt/SUNWuwc/ ... and also /var/opt/SUNWuwc/ ... do i interpret the mappings in both (uwc/am) files correctly - can you explain exactly what the values in the mappings correspond to in terms of hosted domains, the initial instance, etc. for each of the files (uwc/am)?
thanks,
s7
# 6
/opt/SUNWuwc is the UWC install directory whereas the /var/opt/SUNWuwc is the deploy directory .Any changes made to the /deploy directory will overwite the same to the install directory as well.So whatever changes you would like to do ,you can make them under the deploy directory(/var/opt/SUNWuwc) and then restart the webcontainer.
The mappings that you do in UWC and AM,are required for the virtual host to be recongnised as part of the main host.
As of JES5(current relase) ,the AMConfig setting is no more required for a similar setup.
One last thing,did you try logging into AM as the virtual domain user and then manually changing the URL to /uwc.
thanks,
Ramya
# 7
> /opt/SUNWuwc is the UWC install directory whereas the
> /var/opt/SUNWuwc is the deploy directory .Any changes
> made to the /deploy directory will overwite the same
> to the install directory as well.So whatever changes
> you would like to do ,you can make them under the
> deploy directory(/var/opt/SUNWuwc) and then restart
> the webcontainer.
ok
>
> The mappings that you do in UWC and AM,are required
> for the virtual host to be recongnised as part of the
> main host.
can you tell me if i have the mappings correct - was not sure i understood what values go on either side of the keywords and in the brackets, etc. e.g. what do these values correspond to ...
>
> As of JES5(current relase) ,the AMConfig setting is
> no more required for a similar setup.
>
> One last thing,did you try logging into AM as the
> virtual domain user and then manually changing the
> URL to /uwc.
logging in to am from what url (the hosted/amconsole or main/amconsole or does it matter)? weither way, i couldn't authenticate (auth failed) at all using uid/passwd or uid@hosted.com/passwd. i was using an acct that only exists in the hosted domain.
thanks,
s7
>
> thanks,
> Ramya
# 8
The mapping in AMconfig.properties is like this:
com.sun.identity.server.fqdnMap[<invalid-name>]=<valid-name>
where invalid name is your hsoted domain name and the valid name is your default hostname.
For my host : usg138,I have a hosted domain say pepsi.com anmd the defualt domain is india.sun.com ,it would something like
com.sun.identity.server.fqdnMap[usg138.pepsi.com]=usg138.india.sun.com
In your case ,i take the mail.hosted1.com to be the url that i will access uwc from on for the hosted domain - and my.realdomain.com to be the main uwc instance so,
com.sun.identity.server.fqdnMap[mail.hosted1.com]=my.realdomain.com
and the other mapping in uwcauth.properties looks like:
[fully qualified virtual hostname of uwc].isvirtualhostname=[virtual hostname of IS server.] This is required for the amserver URL to be constructed while login to create the cookie.
In my case ,
usg138.pepsi.com.isvirutalhostname=usg138.pepsi.com
HTH,
Ramya
