Introduction
...
Code Block | ||||||
---|---|---|---|---|---|---|
| ||||||
cd /usr/local/ubisecure/ubilogin-sso/ubilogin/config/tomcat
./update.sh
|
Verify SSO API has successfully started
Since v. 9.1.0 SSO API logs to the shared SSO diagnostic log file: sso_diag.YYYY-MM-DD.log
. Review that log file indicates successful startup. Confirm that no unexpected errors have occurred since the previous restart.
Code Block | ||
---|---|---|
| ||
YYYY-MM-DD hh:mm:ss,SSS init INFO ServletContainerApplication version X.X.X starting ... YYYY-MM-DD hh:mm:ss,SSS sso-api com.globalsign.iam.sso.api.oauth2.validator.BearerTokenValidatorFeature INFO ServletBearerTokenValidatorFeature enabled YYYY-MM-DD hh:mm:ss,SSS sso-api com.globalsign.iam.sso.api.oauth2.bearer.BearerTokenFeature INFO BearerTokenFeature enabled YYYY-MM-DD hh:mm:ss,SSS sso-api com.globalsign.iam.sso.api.application.ServletContainerFeature INFO ServletContainerFeature enabled YYYY-MM-DD hh:mm:ss,SSS sso-api com.globalsign.iam.sso.api.message.ObjectMessageFeature INFO ObjectMessageFeature enabled ... YYYY-MM-DD hh:mm:ss,SSS uas init INFO Ubilogin Authentication Server X.X.X started YYYY-MM-DD hh:mm:ss,SSS uas tech INFO ping: the system is alive |
Import certificates
The SSO Management API connects to the SSO OAuth2 endpoints. The issuer of the SSL certificate on those endpoints must be trusted by the java installation used. By default, no publically issued CAs are trusted and must be trusted explicitly.
...
Next, add the user to SSO Management API Administrators –group.
Testing the connection
You can start testing the connection using the following syntax using Curl. You may use the ‘--insecure’ flag in case self-signed certificates are used.
...