| Eduardo M Fronza 2004-09-02, 6:58 pm |
| Hello,
I will make a brief description of what I've done so far and the outcomes for each setup Scenario for IBM WebSphere Portal integrated with Lotus products.
All instalations following IBM Red Books were used to perform these instalations:
WebSphere Portal 5.0.2 Extend - Collaboration Installation Guide
IBM WebSphere Portal here for Multiplatforms V5 Handbook
Lotus Domino 6.5.1 and 5.1 Extended Products Integration Guide
Scenario 01 - testing enviroment:
Server1 Windows XP
Domino Server 5.0.12 runnig LDAP, HTTP, DIIOP, Mail, etc.
Quickplace 3.0.1
Server2 Windows 2000 Pro
Domino Server 5.0.12
Sametime Server 3.0
WebSphere Portal 5.0.2.2
WebSphere Application Server 5.0.2.3
Outcome: In this Scenario, all integrations and services worked very well - Quickplace portlet, People Finder, Who Is Here, Sametime Contact List, etc.
IMG 01: http://portal.logocenter.com.br/ibm...rtalenabled.jpg
Scenario 02:
Server1 Windows XP
Domino Server 5.0.12 runnig LDAP, HTTP, DIIOP, Mail, etc.
Quickplace 3.0.1
Server2 Windows 2000 Pro
Domino Server 5.0.12
Sametime Server 3.0
Server3 (runnig either Windows 2003 or SUSE Linux Enterprise v.8)
WebSphere Portal 5.0.2.2
WebSphere Application Server 5.0.2.3
Outcome: In this Scenario, Sametime Awareness in the Portal didn't work. Therefore, the Who Is Here portlet doesn't show a single user, the Sametime Contact List stays dead. The weird part is that the Portal is accessing the same Domino servers that were used in the first Scenario and no errors are reported. if even get the source code from the HTML containig the Who Is Here, I can see the user id and credentials inside the HTML.
IMG 02: http://portal.logocenter.com.br/ibm/news/portalplus.jpg
Scenario 03:
Single Windows 2003 Server
Lotus Domino 6.5.1 running LDAP, HTTP, DIIOP, Mail.
Sametime Server 6.5.1
Quickplace Server 6.5.1
WebSphere Application Server 5.0.2.6
WebSphere Application Enterprise Server 5.0.2
WebSphere Portal Server 5.0.2.2
Lotus Extended Products
Outcome: Before the creation of the WebSphere LTPA token, SSO and awareness between Sametime, QuickPlace and iNotes were working perfectly as shown in the images bellow.
IMG 03 http://portal.logocenter.com.br/ibm/news/qp651.jpg
IMG 04 http://portal.logocenter.com.br/ibm/news/dominod651.jpg
IMG 05 http://portal.logocenter.com.br/ibm/news/st651.jpg
IMG 06 http://portal.logocenter.com.br/ibm/news/qp651_2.jpg
Once I brought the LTPA token from WebSphere to Domino, it got all scr....d up!
SSO between WebSphere and Domino products didn't work. So if I logged into the Portal and tried to navigate directly into Quickplace, I had to perform a login action again. None of the Extended Products Portlets worked, including mail and Quickplace, no Sametime Awareness.
SSO would only work between Portal Server and App Server or between the Lotus' products. But never from WebSphere to Lotus.
IMG 07 http://portal.logocenter.com.br/ibm...ortal651_06.jpg
IMG 08 http://portal.logocenter.com.br/ibm...ortal651_07.jpg
IMG 09 http://portal.logocenter.com.br/ibm...ortal651_08.jpg
Scenario 04:Server1 Windows 2003:
Lotus Domino 6.5.1 runnig HTTP.
Sametime Server 6.5.1
WebSphere Application Server 5.0.2.6
WebSphere Application Enterprise Server 5.0.2
WebSphere Portal Server 5.0.2.2
Lotus Extended Products
Server2 Windows 2000 Server:
Lotus Domino 6.5.1 runnig LDAP, HTTP, DIIOP, Mail.
Quickplace Server 6.5.1
Outcome: In this configuration, SSO between all products seems to work. Well, all except for Sametime and WebSphere Portal. We got no Sametime Awareness inside the Portal. However, iNotes did work, Quickplace also. And switching between sites also works.
IMG 09 http://portal.logocenter.com.br/ibm...ortal651_01.jpg
IMG 10 http://portal.logocenter.com.br/ibm...ortal651_02.jpg
IMG 11 http://portal.logocenter.com.br/ibm...ortal651_03.jpg
IMG 12 http://portal.logocenter.com.br/ibm...ortal651_04.jpg
IMG 13 http://portal.logocenter.com.br/ibm...ortal651_05.jpg
No matter what Scenario we use, the following segment is always present inside the HTML code for the pages with the WHO IS HERE Portlet:
<script type="text/javascript" language="Javascript">
if (typeof writeSTLinksApplet == "function") writeSTLinksApplet("CN=wpsadmin,O=logocenter", " CzFdrs+YiGSHHAnkO6HijWQ0h9bjawERXQLMm7HQ
sh6KyoqmBEMSLflj5QLV0c8dPhERO2MvE0Y90vBo
JXxaP+EK3ppOtzPQaViKkE69+7IjygeLdoKWS40q
u5AEYrhWp/ GiV1c3mxNmXg3TTxpnLEs5eQVP3J9tYosN76zzuF
nJ0Qq1zPBVuISWsphCsfxqfAS0jUy/ nuMxvM6NSJR2hI1GtzB+olM510fdEAqpruLyXUgO
Rb5IpSzgRYvEQthW+mMSbHM3VDLzbpvtImyEMvX6
5aF2jOzRW7JierZ1Ty/ b2YeAyp3n1aUvE+2UEIXQNo8Tqm+Fu2BAAuVx9Cp
qpA==", true);
</script>
When Awareness doesn't work, the Microsoft JVM always report some errors:
Microsoft (R) VM for Java, 5.0 Release 5.0.0.3810
========================================
======
? help
c clear
f run finalizers
g garbage collect
m memory usage
q quit
t thread list
========================================
======
com.ms.security.SecurityExceptionEx[com/lotus/sametime/stlinks/client/STLink
sApplet.a]: cannot connect to "portalplus"
at com/ms/security/permissions/NetIOPermission.check
at com/ms/security/PolicyEngine.deepCheck
at com/ms/security/PolicyEngine.checkPermission
at com/ms/security/StandardSecurityManager.chk
at com/ms/security/StandardSecurityManager.chkex
at com/ms/security/StandardSecurityManager.checkConnect
at java/net/InetAddress.getLocalHost
at com/lotus/sametime/stlinks/client/STLinksApplet.a
at o.run
com.ms.security.SecurityExceptionEx[com/lotus/sametime/stlinks/client/STLink
sApplet.a]: cannot connect to "portalplus"
at com/ms/security/permissions/NetIOPermission.check
at com/ms/security/PolicyEngine.deepCheck
at com/ms/security/PolicyEngine.checkPermission
at com/ms/security/StandardSecurityManager.chk
at com/ms/security/StandardSecurityManager.chkex
at com/ms/security/StandardSecurityManager.checkConnect
at java/net/InetAddress.getLocalHost
at com/lotus/sametime/stlinks/client/STLinksApplet.a
at o.run
com.ms.security.SecurityExceptionEx[com/lotus/sametime/stlinks/client/STLink
sApplet.a]: cannot connect to "portalplus"
at com/ms/security/permissions/NetIOPermission.check
at com/ms/security/PolicyEngine.deepCheck
at com/ms/security/PolicyEngine.checkPermission
at com/ms/security/StandardSecurityManager.chk
at com/ms/security/StandardSecurityManager.chkex
at com/ms/security/StandardSecurityManager.checkConnect
at java/net/InetAddress.getLocalHost
at com/lotus/sametime/stlinks/client/STLinksApplet.a
at o.run
com.ms.security.SecurityExceptionEx[com/lotus/sametime/stlinks/client/STLink
sApplet.a]: cannot connect to "portalplus"
at com/ms/security/permissions/NetIOPermission.check
at com/ms/security/PolicyEngine.deepCheck
at com/ms/security/PolicyEngine.checkPermission
at com/ms/security/StandardSecurityManager.chk
at com/ms/security/StandardSecurityManager.chkex
at com/ms/security/StandardSecurityManager.checkConnect
at java/net/InetAddress.getLocalHost
at com/lotus/sametime/stlinks/client/STLinksApplet.a
at o.run
java.lang.NullPointerException
at java/io/ByteArrayInputStream.<init>
at d.a
at d.a
at p.a
at r.run
at java/lang/Thread.run
com.ms.security.SecurityExceptionEx[com/lotus/sametime/stlinks/client/STLink
sApplet.a]: cannot connect to "portalplus"
at com/ms/security/permissions/NetIOPermission.check
at com/ms/security/PolicyEngine.deepCheck
at com/ms/security/PolicyEngine.checkPermission
at com/ms/security/StandardSecurityManager.chk
at com/ms/security/StandardSecurityManager.chkex
at com/ms/security/StandardSecurityManager.checkConnect
at java/net/InetAddress.getLocalHost
at com/lotus/sametime/stlinks/client/STLinksApplet.a
at o.run
com.ms.security.SecurityExceptionEx[com/lotus/sametime/stlinks/client/STLink
sApplet.a]: cannot connect to "portalplus"
at com/ms/security/permissions/NetIOPermission.check
at com/ms/security/PolicyEngine.deepCheck
at com/ms/security/PolicyEngine.checkPermission
at com/ms/security/StandardSecurityManager.chk
at com/ms/security/StandardSecurityManager.chkex
at com/ms/security/StandardSecurityManager.checkConnect
at java/net/InetAddress.getLocalHost
at com/lotus/sametime/stlinks/client/STLinksApplet.a
at o.run
java.lang.NullPointerException
at java/io/ByteArrayInputStream.<init>
at d.a
at d.a
at p.a
at r.run
at java/lang/Thread.run
com.ms.security.SecurityExceptionEx[com/lotus/sametime/stlinks/client/STLink
sApplet.a]: cannot connect to "portalplus"
at com/ms/security/permissions/NetIOPermission.check
at com/ms/security/PolicyEngine.deepCheck
at com/ms/security/PolicyEngine.checkPermission
at com/ms/security/StandardSecurityManager.chk
at com/ms/security/StandardSecurityManager.chkex
at com/ms/security/StandardSecurityManager.checkConnect
at java/net/InetAddress.getLocalHost
at com/lotus/sametime/stlinks/client/STLinksApplet.a
at o.run
com.ms.security.SecurityExceptionEx[com/lotus/sametime/stlinks/client/STLink
sApplet.a]: cannot connect to "portalplus"
at com/ms/security/permissions/NetIOPermission.check
at com/ms/security/PolicyEngine.deepCheck
at com/ms/security/PolicyEngine.checkPermission
at com/ms/security/StandardSecurityManager.chk
at com/ms/security/StandardSecurityManager.chkex
at com/ms/security/StandardSecurityManager.checkConnect
at java/net/InetAddress.getLocalHost
at com/lotus/sametime/stlinks/client/STLinksApplet.a
at o.run
The following images shows the LTPA tokens when logging into Quickplace (IMG 14) and into WebSphere Portal (IMG 15):
IMG 14 http://portal.logocenter.com.br/ibm/news/qp_sso.bmp
IMG 15 http://portal.logocenter.com.br/ibm/news/wps_sso.bmp
General outcome: could there be some kind of problem with SSO between WebSphere and Sametime? Is there a JVM problem that prevents the applets necessary to make sametime awareness to function properly?
If anyone has any ideas that you'ld to share I would be grateful.
Eduardo M. Fronza
Logocenter S/A
|