While configuring a Juniper SA2500 in conjunction with Novell GroupWise WebAccess, the customers wanted single sign on (SSO) configured. The default Novell GroupWise WebAccess login page uses FBA (Forms Based Authentication). So it should be possible to push the correct POST parameters to enable SSO for GroupWise WebAccess.
I started with looking at the page source of the login page and found the POST configuration. You can find them by searching the string:
<form method=”post” action=”/gw/webacc” name=”loginForm” target=”_top”>
I configured a Web Resource Profile in the Juniper SA. This Resource Profile has a bookmark which displays the Novell GroupWise WebAccess page. Next I configured a Form POST Resource Policy. The picture below shows the configuration.
The table displays the POST detail settings:
User label | Name | Value |
error | error | login |
User.displayDraftItems | User.displayDraftItems | 1 |
merge | merge | webacc |
action | action | User.Login |
Url.hasJavaScript | Url.hasJavaScript | 1 |
Low.bandwidth | Low.bandwidth | 0 |
User.interface | User.interface | css |
User.Theme.index | User.Theme.index | 1 |
Username | User.id | <USER> |
Password | User.password | <PASSWORD> |
User.lang | User.lang | nl |
User.settings.speed | User.settings.speed | high |
The above configuration works in my situation. The user is automatically logged in to their corresponding Novell GroupWise WebAccess page.