Sharing an LDAP Repository Between Afaria and Unwired Server

Configure Afaria and Unwired Server to share a common LDAP repository when Afaria and Unwired Platform are not installed at the same time.

Prerequisites 

Ensure that Unwired Server is started.

Note: Sybase strongly recommends that you use a common authentication provider for Afaria, Unwired Server, and Sybase Control Center. Otherwise, user names and password used to authenticate users from mobile clients and Unwired Server administration and Afaria may not work seamlessly. Afaria and Unwired Server can share LDAP and NativeOS security; however, only LDAP can be used by all three components. Configuration details between the components must match; otherwise, single sign-on does not work.
Each component implements security mechanisms differently.
  • For Unwired Server, use Sybase Control Center to configure the provider by clicking Security > Configuration then configuring the information in the Authentication tab.
  • For Sybase Control Center, edit the <UAF-install-dir>\conf\csi.properties file.
  • For Afaria, enable authentication and select the appropriate naming attribute. Depending on your system configuration, you might also need to run <UnwiredPlatform_InstallDir>\Servers\Afaria\bin\XSDirectorySetupWizard.exe to manually set up Afaria and Unwired Server to share the same repository.
When you install Sybase Unwired Platform and Afaria at the same time, the installer configures Afaria to share the same LDAP repository with Sybase Control Center and Unwired Server if the default configuration works in your environment.
  • Afaria protocol: HTTP
  • Afaria port: 4041
  • Authentication: enabled
However, you need to manually set up Afaria to share the LDAP repository if you want to:
  • Change your LDAP settings and reconfigure Afaria Server
  • Use an existing Afaria installation with Sybase Unwired Platform
  • Run Sybase Unwired Platform and Afaria on separate machines
  • Install Sybase Unwired Platform and Afaria at different times (on the same machine or different machines)
  1. Run <UnwiredPlatform_InstallDir>\Servers\Afaria\bin\XSDirectorySetupWizard.exe.
  2. In the Directory Type page, choose LDAP-based and click Next.
  3. Configure the server information as required for your deployment.
  4. Click Search User and add supAdmin, then click OK.
  5. Click Next to choose the appropriate root directory.
  6. Click Next and select:
    Option Description
    LDAP Class Name for Users Select Person
    User Name Attribute Select UID
  7. Click Next and click Support OU and group membership.
  8. Click Finish.
Next  Verify your Afaria Server configuration by ensuring that the properties you configure in Sybase Control Center for Unwired Server match the corresponding properties configured in Afaria Administrator.
  1. (Recommended) Ensure that you have enabled authentication.

    Select Server Configuration > Properties > Security and verify that Enable Authentication is selected.

  2. Verify the state of automatic approvals for your Afaria deployment license:
    • For development environments, you may select Automatically approve clients.
    • For production environments, make sure Automatically approve clients is not selected.
  3. If you are modifying an existing installation of Afaria for Unwired Platform integration, ensure you have imported required functionality into Afaria with the configaf.bat file that is part of the Unwired Platform media in the modules\afaria\configaf folder. Without this file, the component that authorizes requests will not have been added.
Parent topic: Configuring an LDAP Provider
Related concepts
Configuring CSI Security for Unwired Server
Configuring an LDAP Provider for Sybase Control Center
Configuring an LDAP Provider for Unwired Server

Created September 17, 2009. Send feedback on this help topic to Sybase Technical Publications: pubs@sybase.com