tivoli access manager enterprise single...

Tivoli® Access Manager for Enterprise Single Sign-On

Kiosk Adapter Installation and Setup Guide

Version 6.0

SC32-1997-00

��

Note:

Before using this information and the product it supports, read the information in “Notices,” on page 15.

First Edition (September 2006)

This edition applies to version 6, release 0, modification 0 of IBM Tivoli Access Manager for Enterprise Single

Sign-On (product number 5724-N70) and to all subsequent releases and modifications until otherwise indicated in

new editions.

© Copyright International Business Machines Corporation 2006. All rights reserved.

US Government Users Restricted Rights – Use, duplication or disclosure restricted by GSA ADP Schedule Contract

with IBM Corp.

TAM E-SSO: Kiosk Adapter Installation and Setup Guide

Table of Contents Welcome to TAM E-SSO: Kiosk Adapter............................................................. 2 Installation Overview...................................................................................... 2 System Requirements..................................................................................... 3

Minimum System Requirements .................................................................... 3 Installation Steps ........................................................................................... 4 Event/Audit Logs...........................................................................................11 Bypassing the TAM E-SSO: Kiosk Adapter Agent................................................11 Installing a Link to TAM E-SSO: Desktop Password Reset Agent...........................11 Authenticating to TAM E-SSO: Kiosk Adapter ....................................................12 Upgrading to TAM E-SSO: Kiosk Adapter 6.0.....................................................12 Uninstalling TAM E-SSO: Kiosk Adapter ............................................................13

1


Welcome to TAM E-SSO: Kiosk Adapter IBM Tivoli Access Manager for Enterprise Single Sign-On: Kiosk Adapter (TAM E-SSO: Kiosk Adapter) delivers a secure and easy to use and administer solution that addresses the needs of traditional Single Sign-Off in a kiosk environment. This solution provides user identification to the kiosk by prompting users to login with a Windows password or any supported primary authenticator. TAM E-SSO: Kiosk Adapter has a client-side agent that suspends or closes inactive sessions and seamlessly shuts down all applications.

Installation Overview TAM E-SSO: Kiosk Adapter is installed as an add-on component to IBM Tivoli Access Manager for Enterprise Single Sign-On (TAM E-SSO). TAM E-SSO must be installed prior to installing TAM E-SSO: Kiosk Adapter. TAM E-SSO automatically recognizes TAM E-SSO: Kiosk Adapter once it is installed. The following is a brief overview of the steps that must be taken in order to successfully install TAM E-SSO: Kiosk Adapter. Each step is explained in detail later in this guide, Installation Steps.

• Review System Requirements

• Install TAM E-SSO

• Adjust settings in the TAM E-SSO Administrative Console

• Adjust Windows screen saver settings

• Install TAM E-SSO: Kiosk Adapter

• Restart Computer

2

Note: If you are upgrading from TAM E-SSO: Kiosk Adapter 5.0x, please performthe steps in the Upgrade section before beginning the installation.


System Requirements In order for TAM E-SSO: Kiosk Adapter to install and function properly, your system must meet at least the following requirements.

Minimum System Requirements

TAM E-SSO version 5.04 and above (installed with an Authenticator and a Synchronizer)

Microsoft® Windows® 2000 (SP2+), Windows XP (SP2), Windows Server 2003

Microsoft .NET 2.0

Internet Explorer 6.0 or higher with 256-bit encryption

Pentium III 733 MHz

128 MB RAM

~ 3 MB disk space

Make sure the following are installed with TAM E-SSO:

• A Synchronizer must be installed and set up

• A supported Authenticator must be installed and set up

The following are NOT directly supported:

• TAM E-SSO GINA - the TAM E-SSO: Kiosk Adapter GINA and SSO GINA should not be used together. TAM E-SSO: Kiosk Adapter displays a warning and does not install if the SSO GINA is installed.

• TAM E-SSO: Kiosk Adapter does not support the TAM E-SSO backup/restore function.

• TAM E-SSO: Kiosk Adapter does not support the following TAM E-SSO specific capabilities:

o Windows authentication v1 or v2

o Context-based automatic sync logon

3


Installation Steps Follow these steps to install and configure TAM E-SSO: Kiosk Adapter. Step 1: Review System Requirements

Make sure you have carefully reviewed the system requirements. Step 2: Install TAM E-SSO

TAM E-SSO: Kiosk Adapter works with TAM E-SSO version 5.x and above only. Install TAM E-SSO on your system. Any previous versions of TAM E-SSO must be uninstalled first. If you are upgrading from TAM E-SSO: Kiosk Adapter 5.x, please perform the steps in the Upgrade section before beginning the installation. Please note that you must perform a custom installation. A Primary Logon Method and any Synchronization Manager of your choice must be installed. Please refer to the TAM E-SSO Installation and Setup Guide for detailed instructions. Step 3: Adjust settings in the TAM E-SSO Administrative Console

Before you install TAM E-SSO: Kiosk Adapter, you must adjust some TAM E-SSO Console settings to work with TAM E-SSO: Kiosk Adapter and configure the TAM E-SSO: Kiosk Adapter settings in the Console. Open the TAM E-SSO administrative console by pointing to Start > Programs > Passlogix > TAM E-SSO > TAM E-SSO Console.

1. Expand Kiosk Adapter. This is where applications are configured for TAM E-SSO: Kiosk Adapter. You can add, edit and delete all applications from this section. There are two types of applications:

Applications to Leave Running on Session End

Applications to Close on Session End

To add applications to these lists, click Add, enter the Process Path Key, and click OK. The Process Path Key is the name of the process executable, such as IEXPLORER.EXE is the process path key for Internet Explorer.

4

Note: Please refer to the TAM E-SSO Console Help for more information aboutadding applications.

2. Right-click Global Agent Settings, point to Import, click From Live HKLM. Expand Live.

3. Set up Primary Logon Method.

a. Expand Primary Logon Methods, and click on the Primary Logon Method installed.

b. Set up the Required settings for the Primary Logon Method, if applicable. SSL may need to be turned on or off. This will vary


according to your setup. Please refer to the TAM E-SSO Console Help for detailed instructions.

4. Set up Sync.

a. Expand Synchronization and click on the Synchronization Manager you installed. This will vary according to your setup. Please refer to the TAM E-SSO Console Help for detailed instructions on setting up Sync.

5. Click on Synchronization. Check the Delete Local Cache and change setting to Delete. This setting deletes user's data files and registry keys upon shutdown of the agent.

6. Expand End User Experience and click Setup Wizard. Check the Enable/disable First Time Use (FTU) wizard and change setting to Hide. This setting hides the FTU wizard.

7. Click Kiosk Adapter. This is where you can set up the TAM E-SSO: Kiosk Adapter settings. Adjust the following settings to your preference:

Setting Description

Close suspended sessions after how many seconds

Determines the amount of time (in seconds) of inactivity after which TAM E-SSO: Kiosk Adapter should close a session.

Default is 600 seconds.

Close sync/auth dialog after how many seconds

Enter the amount of time (in seconds) of inactivity after which TAM E-SSO: Kiosk Adapter should close a sync dialog or authentication dialog.

Event Log Machine Name

The name of the local machine where TAM E-SSO: Kiosk Adapter events should be logged.

Event Log Name Enter the name of the Windows event log where TAM E-SSO: Kiosk Adapter events should be logged.

How should we determine which applications to close

Controls how TAM E-SSO: Kiosk Adapter should close applications. The choices are:

Do not close any applications

Only close applications configured to be closed on session end (Default)

Close all applications except those configured to be left running on session end

Lock session when only applications open are those configured to be left running on session

Determines whether TAM E-SSO: Kiosk Adapter should lock a session (after a specified period of time) if only applications open are those configured to be left running on session end.

Note to Active Directory Users: If you will be using LDAP auth against Active Directory sync, perform the following steps:

1. Expand Active Directory and click Advanced. 2. For Credentials to Use, select Use Active Directory server account

only.

5


running on session end

Yes

No (Default)

Note: If Yes is selected, at least one application must be configured to be left running on session end. These applications are configured in the Kiosk Adapter “Applications to Leave Running on Session End” list.

Setting Description

Lock the session after how many seconds

Enter the amount of time (in seconds) before TAM E-SSO: Kiosk Adapter should check for applications that are configured to be left running on session end. This setting only needs to be entered if the above setting, Lock session when only applications open are those configured to be left running on session end, is set to Yes.

Default is 180 seconds.

Number of times to process termination

Enter the number of times that TAM E-SSO: Kiosk Adapter should process the termination of an application. This setting instructs the termination process to loop a certain number of times (or until it is done), which ever comes first. This allows TAM E-SSO: Kiosk Adapter to react to an application if it displays multiple screens during the termination process.

Restart Computer Determines whether the restart computer option is enabled in the TAM E-SSO: Kiosk Adapter Desktop Manager.

Disable (Default)

Enable

Note: Even if this setting is enabled, the option may still be disabled if the Kiosk account does not have sufficient privileges.

Show the tray icon Determines whether the TAM E-SSO: Kiosk Adapter tray icon should be shown.

Show (Default)

Do not show

Shutdown Computer Determines whether the shutdown computer option is enabled in the TAM E-SSO: Kiosk Adapter Desktop Manager.

Disable (Default)

Enable

Note: Even if this setting is enabled, the option may still be disabled if the Kiosk account does not have sufficient privileges.

6


8. Expand Kiosk Adapter and click Advanced. This is where you can set up the TAM E-SSO: Kiosk Adapter’s Advanced settings. Adjust the following settings to your preference:

Setting Description

Show confirmation message when restarting kiosk

This setting determines whether a user should be prompted with a confirmation message after choosing to restart the kiosk.

Show confirmation message when shutting down kiosk

This setting determines whether a user should be prompted with a confirmation message after choosing to shut down the kiosk.

Show confirmation message when starting a new session

This setting determines whether a user should be prompted with a confirmation message after choosing to start a new session. This message appears only if there is an existing session open.

9. Expand Kiosk Adapter, Advanced, and click Special Tasks. This is where you can set up the tasks (lists of commands) that should execute when Kiosk Adapter actions occur. For each set of tasks, select the checkbox and click ... to open the Edit List dialog box. Type one command on each line; end each line by clicking Enter. Do not use any other delimiter characters. Adjust the following settings to your preference:

Setting Description

After session is closed

Command(s) that will run after a session is closed.

After starting a new session

Command(s) that will run after a new session is started.

Before starting a new session

Command(s) that will run before a new session is started.

10. Expand Kiosk Adapter, Desktop Manager, and click Company Logo. This is where you can customize the look and feel of TAM E-SSO: Kiosk Adapter’s Desktop Manager by adding your company’s logo. Adjust the following settings to your preference:

Setting Description

Location of the logo file

Fully qualified path and filename to the logo file. Click the ... button to locate the file.

Logo height (in pixels)

The height of the logo (in pixels). The default is 300.

Logo width (in pixels)

The width of the logo (in pixels). The default is 300.

Logo X coordinate (in pixels)

The X coordinate for the logo image. This is positioned relative to the Status image on the Kiosk Adapter Desktop screen. If this value is negative, the logo will

7


Setting Description

appear to the left of the Status image.

Note: Negative values are represented by large positive numbers in the registry.

For example: -1 = 4294967295 and -2 = 4294967294.

Logo Y coordinate (in pixels)

The Y coordinate for the logo image. This is positioned relative to the Status image on the Kiosk Adapter Desktop screen. If this value is negative, the logo will appear above the Status image.


For example: -1 = 4294967295 and -2 = 4294967294.

11. Expand Kiosk Adapter, Desktop Manager, and click MOTD (Message of the Day). This is where you can upload a message on TAM E-SSO: Kiosk Adapter’s Desktop Manager, for example, a HIPAA compliance reminder. This message will be displayed when a new session is unlocked.. Adjust the following settings to your preference:

Setting Description

Message of the Day (MOTD)

Message text to provide on the Kiosk Adapter desktop manager. This message will be displayed when a new session is unlocked.

MOTD height (in pixels)

The height of the message of the day (in pixels). The default is 300.

MOTD width (in pixels)

The width of the message of the day (in pixels). The default is 300.

MOTD X coordinate (in pixels)

The X coordinate for the message of the day. This is positioned relative to the Status image on the Kiosk Adapter Desktop screen. If this value is negative, the message will appear to the left of the Status image.


For example: -1 = 4294967295 and -2 = 4294967294.

MOTD Y coordinate (in pixels)

The Y coordinate for the message of the day. This is positioned relative to the Status image on the Kiosk Adapter Desktop screen. If this value is negative, the message will appear above the Status image.


For example: -1 = 4294967295 and -2 = 4294967294.

8


12. Once all the settings have been configured, they must be exported to the HKLM. Right-click Live and click Write to Live HKLM. A message asks if you are sure you want to apply the global agent settings in “Live” to the HKLM. Click Yes.

13. It is recommend that CheckForParentProcess to be 0 for LDAPAuth. This is set by default by the TAM E-SSO 5.x installer.

Step 4: Setting up Support for User-specific Time-out Values

Note: This step is optional.

TAM E-SSO: Kiosk Adapter "suspend" and "shutdown" time-out values can be specified by user or role/groups. For example, in a hospital, a doctor and nurse group may be set up. The doctor group may need to have a longer time-out value than a nurse group and the doctor group should be able to "Shutdown" the kiosk, but not the nurse group. This feature provides Administrative Overrides and Configuration Object (CO) settings support for TAM E-SSO: Kiosk Adapter. TAM E-SSO: Kiosk Adapter reads the setting from the Administrative Overrides in the user's TAM E-SSO Storage Manager at the appropriate time and then applies those settings. This allows you to set different suspend and shutdown time-out values for different users and user roles/groups. In the TAM E-SSO Administrative Console, the following are the settings where these values are specified:

•

•

Global Agent Settings > Live > Kiosk Adapter: "Close Suspended Session after how many seconds" Global Agent Settings > Live > Kiosk Adapter: "Shutdown Computer"

Two Global Agent Registry keys must be set up and assigned different values for doctors and nurses (or any other groups). This is can only done by CO and Administrative Overrides where the registry keys are located on the Active Directory server and different registry keys are passed back to the desktop depending on the logged in user group. The following is an example of the steps that should be taken to set this up:

Note: Please refer to the TAM E-SSO Console Help for detailed instructions on setting up CO’s and Administrative Overrides.

1. On Active Directory Server, create user groups, for example, "Doctors" and "Nurses".

2. Add the appropriate users to each group.

3. In the TAM E-SSO Administrative Console, create two new Global Agent keys: "Doctors" and "Nurses".

4. Configure the Synchronizer with CO Support.

5. Open the new “Doctors” Global Agent key and select the "Security" tab.

6. Remove "Authenticated Users" from the list.

7. Add the "Doctors" group to the list.

9


8. Do the same for the “Nurses” Global Agent key (steps 5-7).

9. Write these settings to the HKLM (Tools > Write Global Agent Settings to HKLM).

10. Use the Configure SSO Support Wizard to upload these Global Agent Registry keys to the Active Directory server.

11. Install TAM E-SSO: Kiosk Adapter.

Step 5: Adjust Windows Screen Saver settings

The TAM E-SSO: Kiosk Adapter desktop manager has a lock that is triggered by the normal OS-level session lock timeout (the OS inactivity time value). To change this value, open the desktops Display Properties dialog (right-click on the desktop and click Properties) and click the Screen Saver tab. Select a Screen Saver and change the Wait time (default of 15 minutes) to the desired amount of time (in minutes) a session should be inactive before TAM E-SSO: Kiosk Adapter suspends the session. Step 6: Install TAM E-SSO: Kiosk Adapter

Follow these steps to install and configure the TAM E-SSO: Kiosk Adapter Client Agent.

1. Close all programs.

2. Open the TAM E-SSO KA directory on the CD-ROM.

3. Double-click the TAM E-SSO Kiosk Adapter.msi file to begin the installation.

4. The Welcome Panel appears. Click [Next>].

5. The License Agreement panel appears. Read the license agreement carefully. Select I accept the terms in the license agreement and click [Next>] to continue.

6. Select the Complete setup type and click [Next>].

7. TAM E-SSO: Kiosk Adapter is ready to be installed. Click [Install>].

8. Wait for the installation to complete. When it is done, click [Finish].

9. TAM E-SSO: Kiosk Adapter prompts you to restart your computer.

Step 7: Restart Computer.

After completing the installation of TAM E-SSO: Kiosk Adapter, you are prompted to restart your computer. Upon restart, TAM E-SSO: Kiosk Adapter removes the TAM E-SSO task bar menu and replaces it with its own menu, which integrates the TAM E-SSO menu into it. TAM E-SSO: Kiosk Adapter disables the following TAM E-SSO menu options:

Change Primary Logon

Shutdown TAM E-SSO

Backup/Restore

10


Note: TAM E-SSO: Kiosk Adapter removes the TAM E-SSO userinit entries. If TAM E-SSO: Kiosk Adapter is uninstalled, you will need to run repair your installation of TAM E-SSO through the Add/Remove Programs dialog. See the next section, Uninstalling TAM E-SSO: Kiosk Adapter.

Event/Audit Logs TAM E-SSO: Kiosk Adapter logs TAM E-SSO: Kiosk Adapter Agent events to Windows Event Log. The Windows Event Log can be on the local machine or on a remote machine. Windows Event Log can be named one of the three known log names, or can be given a custom log name. These settings are configured in the TAM E-SSO Admin Console.

Bypassing the TAM E-SSO: Kiosk Adapter Agent If needed, the TAM E-SSO: Kiosk Adapter can be bypassed when a kiosk is started up. The TAM E-SSO: Kiosk Adapter Agent will not start if you hold the Shift key down when logging into the computer.

Installing a Link to TAM E-SSO: Desktop Password Reset Agent A link to TAM E-SSO: Desktop Password Reset Agent can be installed to the TAM E-SSO: Kiosk Adapter’s home page. This allows users to reset their own kiosk password (i.e. AD via LDAP auth) using TAM E-SSO: Desktop Password Reset Agent.

A link to the TAM E-SSO: Desktop Password Reset Agent Client can be installed as a DOS command, using the following command syntax:

msiexec /i [/q] c:\v-GO_TAM E-SSO: Kiosk AdapterAgent.msi programURLs

/q Quiet mode: suppress all installer user interface messages. Refer to the description of other Windows Installer command line options for msiexec at http://msdn.microsoft.com.

programURLs (required):

REG_RESETURL=" http://host /vgoselfservicereset/resetclient/default.aspx"

REG_CHECKSTATUSURL="http://host /vgoselfservicereset/resetclient/checkstatus.aspx"

where: host is the server name (or domain name/IP address) and path of the folder that holds the TAM E-SSO: Desktop Password Reset Adapter service root folder.

11

http://msdn.microsoft.com/library/default.asp?url=/library/en-us/msi/setup/command_line_options.asp


Authenticating to TAM E-SSO: Kiosk Adapter TAM E-SSO: Kiosk Adapter supports TAM E-SSO: Authentication Adapter for all authentication events. All authentication events take place within the authenticator so that TAM E-SSO: Kiosk Adapter does not need to be configured for different authenticators. TAM E-SSO: Kiosk Adapter communicates with every TAM E-SSO: Authentication Adapter authenticator in the same way. • When configured with smart card, proximity card, or other presence-sensing

authenticator, TAM E-SSO: Kiosk Adapter automatically initiates a session when an authenticator is detected.

• When configured with smart card, proximity card, or other presence-sensing authenticator, TAM E-SSO: Kiosk Adapter automatically suspends a session an authenticator is no longer present.

Upgrading to TAM E-SSO: Kiosk Adapter 6.0 If you are performing an upgrade from TAM E-SSO: Kiosk Adapter 5.0x to 6.00, certain steps will need to be taken to ensure a successful upgrade. The following steps apply to an environment where TAM E-SSO 5.0x is installed with TAM E-SSO: Kiosk Adapter 5.0x:

1. Uninstall TAM E-SSO: Kiosk Adapter 5.0x and TAM E-SSO 5.0x.

2. Install TAM E-SSO 5.04 or 6.00.

3. Install TAM E-SSO: Kiosk Adapter 6.0.

12


Uninstalling TAM E-SSO: Kiosk Adapter Follow these steps to uninstall TAM E-SSO: Kiosk Adapter.

1. Click Start > Settings > Control Panel.

2. Open Add/Remove Programs.

3. Select IBM Tivoli Access Manager for Enterprise Single Sign-On: Kiosk Adapter and click [Remove].

4. Follow the prompts to uninstall TAM E-SSO: Kiosk Adapter.

5. TAM E-SSO: Kiosk Adapter prompts you to restart your computer. Click [No].

6. Go back into the Add/Remove Programs dialog. Select IBM Tivoli Access Manager for Enterprise Single Sign-On and click [Change].

7. TAM E-SSO Install Shield wizard appears. Click [Next>].

8. Select Repair and click [Next>].

9. TAM E-SSO: Kiosk Adapter is ready to be installed. Click [Install>].

10. Wait for the installation to complete. When it is done, click [Finish].

11. Restart your computer.

Note: TAM E-SSO: Kiosk Adapter removes any TAM E-SSO Global Agent Settings that are changed while TAM E-SSO: Kiosk Adapter is installed. If TAM E-SSO: Kiosk Adapter is uninstalled, you will need to re-apply these settings to TAM E-SSO. For example, under Synchronization, change Delete LocalCache back to Do Not Delete.

13

Appendix. Notices

This information was developed for products and services offered in the U.S.A.

IBM may not offer the products, services, or features discussed in this document in

other countries. Consult your local IBM® representative for information on the

products and services currently available in your area. Any reference to an IBM

product, program, or service is not intended to state or imply that only that IBM

product, program, or service may be used. Any functionally equivalent product,

program, or service that does not infringe any IBM intellectual property right may

be used instead. However, it is the user’s responsibility to evaluate and verify the

operation of any non-IBM product, program, or service.

IBM may have patents or pending patent applications covering subject matter

described in this document. The furnishing of this document does not give you

any license to these patents. You can send license inquiries, in writing, to:

IBM Director of Licensing

IBM Corporation

North Castle Drive

Armonk, NY 10504-1785

U.S.A.

For license inquiries regarding double-byte (DBCS) information, contact the IBM

Intellectual Property Department in your country or send inquiries, in writing, to:

IBM World Trade Asia Corporation

Licensing

2-31 Roppongi 3-chome, Minato-ku

Tokyo 106-0032, Japan

The following paragraph does not apply to the United Kingdom or any other

country where such provisions are inconsistent with local law:

INTERNATIONAL BUSINESS MACHINES CORPORATION PROVIDES THIS

PUBLICATION “AS IS” WITHOUT WARRANTY OF ANY KIND, EITHER

EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED

WARRANTIES OF NON-INFRINGEMENT, MERCHANTABILITY OR FITNESS

FOR A PARTICULAR PURPOSE. Some states do not allow disclaimer of express or

implied warranties in certain transactions, therefore, this statement may not apply

to you.

This information could include technical inaccuracies or typographical errors.

Changes are periodically made to the information herein; these changes will be

incorporated in new editions of the publication. IBM may make improvements

and/or changes in the product(s) and/or the program(s) described in this

publication at any time without notice.

Any references in this information to non-IBM Web sites are provided for

convenience only and do not in any manner serve as an endorsement of those Web

sites. The materials at those Web sites are not part of the materials for this IBM

product and use of those Web sites is at your own risk.

IBM may use or distribute any of the information you supply in any way it

believes appropriate without incurring any obligation to you.

© Copyright IBM Corp. 2006 15

Licensees of this program who wish to have information about it for the purpose

of enabling: (i) the exchange of information between independently created

programs and other programs (including this one) and (ii) the mutual use of the

information which has been exchanged should contact:

IBM Corporation

2ZA4/101

11400 Burnet Road

Austin, TX 78758

U.S.A.

Such information may be available, subject to appropriate terms and conditions,

including in some cases, payment of a fee.

The licensed program described in this information and all licensed material

available for it are provided by IBM under terms of the IBM Customer Agreement,

IBM International Program License Agreement, or any equivalent agreement

between us.

Any performance data contained herein was determined in a controlled

environment. Therefore, the results obtained in other operating environments may

vary significantly. Some measurements may have been made on development-level

systems and there is no guarantee that these measurements will be the same on

generally available systems. Furthermore, some measurements may have been

estimated through extrapolation. Actual results may vary. Users of this document

should verify the applicable data for their specific environment.

Information concerning non-IBM products was obtained from the suppliers of

those products, their published announcements or other publicly available sources.

IBM has not tested those products and cannot confirm the accuracy of

performance, compatibility or any other claims related to non-IBM products.

Questions on the capabilities of non-IBM products should be addressed to the

suppliers of those products.

Trademarks

The following terms are trademarks or registered trademarks of International

Business Machines Corporation in the United States, other countries, or both:

AIX

DB2

developerWorks

eServer

IBM

iSeries

Lotus

Passport Advantage

pSeries

RACF

Rational

Redbooks

Tivoli

WebSphere

zSeries

Microsoft®, Windows®, Windows NT®, and the Windows logo are trademarks of

Microsoft Corporation in the United States, other countries, or both.

16 IBM Tivoli Access Manager for Enterprise Single Sign-On: Kiosk Adapter Installation and Setup Guide

Intel®, Intel Inside® (logos), MMX and Pentium® are trademarks of Intel

Corporation in the United States, other countries, or both.

UNIX® is a registered trademark of The Open Group in the United States and

other countries.

Linux® is a trademark of Linus Torvalds in the U.S., other countries, or both.

Java™ and all Java-based trademarks are trademarks of Sun

Microsystems, Inc. in the United States, other countries, or

both.

Other company, product, and service names may be trademarks or service marks

of others.

Appendix. Notices 17

18 IBM Tivoli Access Manager for Enterprise Single Sign-On: Kiosk Adapter Installation and Setup Guide

��

Printed in USA

SC32-1997-00

tivoli access manager enterprise single...

Documents