beautypg.com

Granting permissions for the saml bridge log file – Google Search Appliance Enabling Windows Integrated Authentication version 6.8 User Manual

Page 13

background image

Google Search Appliance: Enabling Windows Integrated Authentication

13

2.

Right click the name of the application pool that was configured for saml bridge and select
Properties.

3.

In the Properties dialog box, click the Identity tab.

4.

In Application pool identity, verify that Predefined is selected and that Network Service is
selected in the drop-down menu.

5.

Click OK to close the Properties dialog box.

Configuring Authentication Requirements for the
Login.aspx File

The Login.aspx file is the component of the SAML Bridge that authenticates the user. When a user
makes a secure search request, the search appliance redirects the request to this Login.aspx file for
authentication.

You will now configure the Login.aspx file to require authentication, so that the user’s browser sends
Windows login credentials.

1.

In the IIS Manager tree view, under Web Sites, locate and select saml- bridge.

2.

In the list view on the right, right click the file Login.aspx, and select Properties. The Properties
dialog box appears.

3.

Click the File Security tab.

4.

In the Authentication and Access Control region, click Edit.

5.

In the Authentication Methods window that appears, deselect Enable anonymous access and
select Integrated Windows Authentication.

6.

Click OK to close the Authentication Methods dialog box and then click OK to close the Properties
dialog box.

This file is treated differently from other files in the saml-bridge website. This file requires
authentication, but the search appliance needs anonymous access to other files under the virtual
directory.

Granting Permissions for the SAML Bridge Log File

You now configure the SAML Bridge so that all writers can write to the SAML Bridge log files.

1.

Select the saml-bridge web site in IIS.

2.

Right-click the saml-bridge web site and select Explore.

3.

Right-click the ac.log file and select Properties.

4.

Go to the Security tab.

5.

Click the Add... button. The Select Users, Computers or Groups dialog box is displayed.

6.

Type Everyone in the Enter the object names to select text box.

7.

Click Check Names. The saml-bridge web site is mapped to everyone in the current domain.

8.

Click OK. The dialog box closes.

See also other documents in the category Google Software: