How to use SSO Basic Authentication in Enovia 3DEXPERIENCE 2014X

With basic authentication, users will be prompted to enter their credentials on accessing the Enovia portal. A successful authentication will take the user directly to the Enovia web page.

  1. In enovia.ini, modify the value of MX_PAM_AUTHENTICATE_CLASS with "matrix.util.ServletAuthentication"
  2. Set the value of emxFramework.External.Authentication to "true" in emxsystem.properties file in C:\apache-tomee-plus-1.6.0.1\webapps\enovia\WEB-INF\classes folder.
  3. Add the following at the end of the web.xml in your C:\apache-tomee-plus-1.6.0.1\webapps\enovia\WEB-INF folder.

<security-constraint> <web-resource-collection>

<web-resource-name>SecurePages</web-resource-name>

<description>Security constraint for resources in the secure directory</description>

<url-pattern>*.jsp</url-pattern>

<url-pattern>/servlet/*</url-pattern>

<url-pattern>/workspace/*</url-pattern>

<url-pattern>/services/*</url-pattern>

<url-pattern>/SidlChunked/*</url-pattern>

<url-pattern>/webservice/*</url-pattern>

</web-resource-collection>

<auth-constraint>

<description>General Access</description>

<role-name>*</role-name>

</auth-constraint>

<user-data-constraint>

<description>SSL not required</description>

<transport-guarantee>NONE</transport-guarantee>

</user-data-constraint>

</security-constraint>

<login-config>

<auth-method>BASIC</auth-method>

</login-config>

<security-role>

<description>General Access</description>

<role-name>*</role-name>

</security-role>

4. Edit tomcat-users.xml located in C:\apache-tomee-plus-1.6.0.1\conf

                Add the following info before the last section </tomcat-users>

            <role rolename="manager"/>

            <role rolename="admin"/>

<user username="USERNAME" password="PWD" roles="admin,manager"/>

Shutdown Tomcat if running.

Clear Tomcat work folder and Java cache.

Set default browser to Firefox.

Note: The SSO authentication works only with default browsers. You can set DEFAULT_BROWSER=path to browser.exe in environment variables.

On the client, open settings.ini located in C:\Program Files\Dassault Systemes\IEFClientV6R2014x. Change the value for SSOEnabled to "true"

Leave a Reply