SiteMinder/Tomcat/AD SSO for BI 4.0 on Windows
Hello - I am looking for some help with setting up SSO on BI 4.0 using SiteMinder with Windows AD. We have already done the Kerberos/Vintela set up and that works well but due to some security/network issues we've been facing, the SSO using Kerberos/Vintela isn't working right on our Juniper VPN. So we were told by our NetSec guys to try the NTLM option, which I guess is not available for BI 4.0 running Tomcat.
So our option now is to go the SiteMinder route. We already have a SM Policy Server here that is used for SSO to a lot of other apps. What would be required to configure BI 4.0 to use it? The 4.0 admin guide is a joke when it comes to details. Do we need to install the SM agent on on the BO server running Tomcat? If so, it looks like there is no SM agent support for Tomcat. Then do we need IIS/Apache web server in front of our Tomcat App Server?
What are our options and is there any white paper or guide written for this specific configuration?
Here's our environment:
BI 4.0 SP02
Windows 2008 R2
Windows AD authentication