Forum Discussion

Andy_4060's avatar
Andy_4060
Icon for Nimbostratus rankNimbostratus
Oct 17, 2012

SSO with Novell Groupwise webmail not working

Hello everybody,

I'm using BIG-IP APM and I would like to configure SSO on Groupwise Webmail.

The major issue is that Groupwise needs a "User.context" value (random number) to correctly work:

method="post" action="/gw/webacc" name="loginForm" target="_top">
input type="hidden" name="User.context" value="23f4bfc8c2b455b6ff13db3412aa69988cd9"

I tried to use an SSO type "Forms - Client Initiated" but is not working well at the moment.

Somebody has already implemented such type of SSO on Groupwise webmail?

Thank you very much for your help!

Andrea

3 Replies

  • I have something very similar but I can't resolve it. Can anyone help us?

     

    Regards.

     

  • We are experiencing similar issues with GroupWise mail.

     

    We manage to catch the user.context variable, by looking the form payload, then submit it to a dummy sso-start uri. The sso profile posts back to the correct location. This strategy worked with the groupwise password portal, but doesn't work with groupwise email. We suspect it is to do with the javascripts.

     

    If anyone managed to get SSO for GroupWise email, it will be great to know...

     

  • kunjan's avatar
    kunjan
    Icon for Nimbostratus rankNimbostratus

    Can you try the following JS using "Custom" under "Javascript Injection" with client initiated form SSO

    document.body.onkeydown=function(e){return false;};
    document.body.style.visibility='hidden';
    document.body.style.display='none';
    function __f5submit() {
    var __f5form = document.forms[0];
    __f5form.setAttribute('autocomplete', 'off');
    __f5form.username.value='%{session.sso.token.last.username}';
    __f5form.password.value='%{session.sso.token.last.password}';
    ;
    var __f5action = "/gw/webacc";
    var __f5qsep = (__f5action.indexOf('?') == -1) ? '?' : '&';
    __f5form.action = __f5action ;
    ;
    document.createElement('form').submit.call(document.loginForm)
    }
    if (window.addEventListener) {
      window.addEventListener('load',__f5submit,false);
    } else if (window.attachEvent) {
      window.attachEvent(' ',__f5submit);
    } else {
      window. =__f5submit;
    }