Configure SiteMinder Connections over SSL

Execute the following steps to configure the SiteMinder connection over SSL:

1. Download network security services (ftp://mozilla.org/pub/mozilla.org/nss/releases/).  For Windows, download nss-3.11.4.zip package in the the NSS_3_11_4_RTM/msvc6.0/WINNT5.0_OPT.OBJ/ folder.  Extract the contents to C:\Apps\nss-3.11.4\
2. Download the latest Netscape Portable Runtime (NPR) from the Mozilla FTP site: (http://ftp.mozilla.org/pub/mozilla.org/nspr/releases/). For Windows, download nspr-4.6.zip package in the v4.6/WINNT5.0_OPT.OBJ/ folder.  Extract contents to C:\Apps\nspr-4.6\
3. Add the NSS tools bin/ and lib/, and the NSPR lib/ directories to the system path.
4. Create the certificate database files

C:\Projects\CodeSigning\> certutil -N -d .

C:\Projects\CodeSigning\> certutil -N - d C:\certdatabase

The dot (.) will cause the database to be created in the current directory.  NSS creates the required certificate database files: cert7.db, key3.db and sec mod.db

     5.  Add the root Certificate Authority (CA) to the certification database

certutil -A -n alias -t trust_arguments -i root_CA_path -d certificate_database_directory

     6.  Add the server certificates to the certificate database

certutil -A -n alias -t trust_arguments i root_CA_path -d certificate_database_directory

     7.  List the certificates in the certificate database

certutil -L -d certificate_database_directory

     8.  Configure the user directory for SSL
     9.  Point the policy server to the certificate database

SiteMinder WebAgent Registration failed: Unknown error 127

Description:

When installing and configuring SiteMinder WebAgents 6QMRx on Linux based systems the following error message is displayed when the install script tries to register a trusted host to the SiteMinder Policy Server.

Registration Failed
------------------------
Registration failed: Unknown error 127


The "Registration failed: Unknown error 127" error is caused by the operating system not having the correct libraries installed.  The web agents for the Linux platform were compiled using the GCC 2.96 libraries.

Solution:

Change the permission of the file you downloaded to be executable
chmod a+x compat-libstdc++-33-3.2.3-61.i386.rpm
Install rpm by issuing the following command
rpm -i compat-libstdc++-33-3.2.3-61.i386.rpm
Confirm that the rpm was installed
rpm -q compat-libstdc++-33

Once the libraries are installed the web agent registration process should complete without any errors.

lld smreghost

./smreghost -i 10.112.52.207 -u siteminder -p password -hn smspagtlnx.cloud.secidsol.com -hc spagentlinuxHCO


RESULT: ./smreghost: error while loading shared libraries: libsmcommonutil.so: cannot open shared object file: No such file or directory 


TO RESOLVE: copy native .so files to /usr/lib directory of the base SiteMinder Agent for SharePoint (Linux).