Setting Up the NTProxy Provider

To use a Windows NTProxy login provider, set up the Windows account as well as an admin security configuration in Sybase Control Center.

This security provider is typically used only to configure administrator security in Sybase Control Center.

  1. Add Unwired Platform groups and users to Windows by running the Control Panel and opening User Accounts.
    • Create a SUP Administrator and a SUP Domain Administrator group.
    • Add administrator users and passwords to that group. For example, the default user and password is supAdmin and s3pAdmin respectively.
  2. Configure NTProxy for Sybase Control Center, by opening SCC_HOME\conf\csi.properties, and adding an NTProxy login module. For example: 
    CSI.loginModule.5.provider=com.sybase.ua.services.security.os.NTProxyLoginModule
CSI.loginModule.5.controlFlag=sufficient
CSI.loginModule.5.options.moduleName=NT Proxy Login Module
CSI.loginModule.5.options.debug=true
  3. Manually map roles for Sybase Control Center, by opening SCC_HOME\conf\roles-map.xml, and editing the NTProxy Login Module entity to add SUP Administrator and SUP Domain Administrator group mappings. The "name" property must match the "moduleName" property value in csi.properties.
    Note: The value in "modRole" are Windows OS groups designated for Unwired Platform administrator and Domain administrator.
    This example uses "SUP Administrator" as the Windows OS group for platform administrator and "SUP Domain Administrator" for domain administrator rights. Make sure to create those groups or use your group name, and assign users membership to respective group as needed: 
    <module name="NT Proxy Login Module">
      <role-mapping modRole="Administrators" uafRole="uaAnonymous,uaAgentAdmin" />
      <role-mapping modRole="Administrators" uafRole="uaAnonymous,uaOSAdmin" />
      <role-mapping modRole="Users" uafRole="uaAnonymous,uaUser" />
      <role-mapping modRole="Guests" uafRole="uaAnonymous,uaGuest" />
      <role-mapping modRole="sybase" uafRole="uaAnonymous,uaPluginAdmin,sccUserRole" />
      <role-mapping modRole="SUP Administrator" uafRole="uaAnonymous,uaAgentAdmin,uaPluginAdmin,sccAdminRole,sccUserRole" />
						<role-mapping modRole="SUP Domain Administrator" uafRole="uaAnonymous,uaAgentAdmin,uaPluginAdmin,sccUserRole" />
</module>
    You can also map roles in SCC. See Sybase Control Center > Configure > Authorization > Assigning a Role to a Login or a Group.
  4. Configure the NTProxy provider for the "admin" security configuration in SCC.
    1. Log in as a SUP administrator. Supply the domain as well as the user name, for example: userName@domainName
    2. In the left navigation tree, click Security > admin to modify the existing security configuration used for SCC.
    3. In the right administration pane, select the Authentication tab and click New.
    4. Select NTProxy as the login module, and ensure that the Default Authentication Server property value is the domain name of the SCC server host computer.
    5. Configure other properties as required and click OK.
    6. Select the Unwired Server name, and click Apply to save the changes to the admin security configuration.
The next time you log in to SCC, use your Windows user account name and password to authenticate as an administrator or domain administrator. A domain name is still required. For example: instead of supAdmin/s3pAdmin, use userName@domainName/WindowsPwd.