Use the worksheet for the isamcfg command-line tool to collect the information you need about the configuration properties before you run the tool.
By default, the tool selects context-based authorization, authentication service, and API protection. You can configure all of them at the same time. If you do not want to configure them all, clear the capability that you do not want to configure by selecting its corresponding number.
Configure this capability if your environment requires the use of behavioral and contextual data analytics to calculate the risk of a transaction.
Configure this capability if your environment requires the use of a step-up authentication type of authentication.
Configure this capability if your environment requires the use of an OAuth authentication type to protect your Application Protocol Interface (API).
Specify the port number of the Local Management Interface. The tool displays a port number.
Example value: 443
Press Enter to use the displayed port or enter your preferred port.
Press Enter to use the displayed user ID or enter your preferred user ID.
Enter the corresponding administrator password.
Press y to validate that the displayed SSL certificate values are valid otherwise, press n.
Enter the Web Gateway Appliance Local Management Interface hostname or IP address. The tool might display a value. Press Enter to use the displayed value or enter your preferred hostname or IP address.
Specify the port number of the Local Management Interface port. The tool displays a port number.
Example value: 443
Press Enter to use the port or enter your preferred port.
Press y to validated that the displayed SSL certificate values are valid otherwise, press n.
Press Enter to use the displayed user ID or enter your preferred user ID.
Enter the corresponding administrator password.
Enter the hostname or IP address of the Security Access Manager for Mobile runtime listening interface.
Example value: 172.16.229.10
Specify the port number of the Security Access Manager for Mobile runtime listening interface.
Example value: 443
The default username is easuser and the default password is Passw0rd.
Press Enter to use the displayed user ID or enter your preferred user ID.
Enter the corresponding Security Access Manager for Mobile runtime listening interface password.
Press y to validated that the displayed SSL certificate values are valid otherwise, press n.
If you are not running theisamcfg tool on the appliance, you can choose Cancel to upload a local file.
If you are running theisamcfg tool on the appliance, you must upload your custom response file. Upload the file to the Web Gateway appliance first before you run the isamcfg tool so that the file is displayed as an option. See Uploading OAuth response files.
Prompt | Your value |
---|---|
Select/deselect the capabilities you would like
to configure by typing its number. Press enter to continue: [] 1. Context-based Authorization |
|
Press 1 for Next, 2 for Previous, 3 to Repeat, C to Cancel | |
Security Access Manager for Mobile |
|
Security Access Manager for Mobile |
|
Security Access Manager for Mobile Security Access Manager for Mobile |
|
SSL certificate data valid (y/n): | |
Web Gateway Appliance Local |
|
Web Gateway Appliance Local |
|
Web Gateway Appliance administrator user ID: Web Gateway Appliance |
|
SSL certificate data valid (y/n): | |
Instance to configure: Enter your choice: | |
Security Access Manager administrator user ID: Security Access Manager |
|
Security Access Manager for Mobile |
|
Security Access Manager for Mobile |
|
Select the method for authentication between
WebSEAL and the Security Access Manager for Mobile runtime: [] 1. Certificate authentication |
|
Security Access Manager for Mobile Security Access Manager for Mobile |
|
SSL certificate data valid (y/n): | |
Automatically add CA certificate to they key database (y/n): | |
The CA certificate already exists in the key database. Replace the CA certificate? (y/n) | |
The following files are available on the Web Gateway Appliance. Choose one file for the 400 Bad Request response page | |
The following files are available on the Web Gateway Appliance. Choose one file for the 401 Unauthorized response page | |
The following files are available on the Web Gateway Appliance. Choose one file for the 502 Bad Gateway response page | |
The junction /mga contains endpoints that require Authorization HTTP header to be forwarded to the backend server. (y|n): |