Home
SMP Configurations after Installing Innovapptive Products
This section guides you with the required SMP Configurations after installing Innovapptive Mobile Products.
Authenticate users using LDAP Server
Authenticate an end user using LDAP Authentication and manage communication between SMP and Gateway system using HTTPs ports.
LDAP Authentication with SSO2 Generator
Generate certificate for SSO2 Generator (DSA)

Title and Copyright
Copyright and Terms of Use for the Post Install or Post Upgrade Configurations Guide for mAssetTag, mWorkOrder, mInventory, mServiceOrder, mWorkList and all other solutions of Connected Workforce Platform^TM.
Preface
Understand audience, know related documents and products and conventions followed in this document.
Post-Install or Post-Upgrade Configurations for Innovapptive Products
This guide contains instructions for post install or post upgrade configurations for both SCP and SMP environments. Depending on the platform you are on, choose your configuration path.
SCP Configurations after Installing Innovapptive Products
This section guides you with the required SCP Configurations after installing Innovapptive Mobile Products.
SMP Configurations after Installing Innovapptive Products
This section guides you with the required SMP Configurations after installing Innovapptive Mobile Products.
- Access SMP Management Cockpit
  Use SMP Management Cockpit to deploy, manage, and monitor SMP-based applications, user registrations, and device connections.
- Define Application Authentication
  Define authentication for your applications that are being deployed on SMP.
- Authenticate users using HTTP Authentication
  Configure Innovapptive products on SMP Server and set up HTTP communication between SMP and Gateway System.
- Authenticate users using HTTPs Authentication
  Set up HTTPs communication between SMP and Gateway System.
- Authenticate users using LDAP Server
  Authenticate an end user using LDAP Authentication and manage communication between SMP and Gateway system using HTTPs ports.
  - LDAP Authentication with SSO2 Generator
    - Generate certificate for SSO2 Generator (DSA)
    - Import ‘smp_sso2.p12’ certificate to SMP
  - Import DSA certificate to GW Sandbox
  - Create security profile for LDAP Authentication
  - Create an Application using LDAP Authentication
    Learn how to create an Application using LDAP Authentication
  - Test LDAP authentication using REST client
- Authenticate users using SAML Authentication
  Authenticate an end user using SAML/ADFS Server and manage communication between SMP and Gateway system using HTTPs ports.
- Authenticate users using X.509 Authentication
  Authenticate an end user using X.509 Server and manage communication between SMP and Gateway system using HTTPs ports.
- Integrate SMP with Azure AD
- Configure Push Notifications for SMP
  Field workers gets an alert when an item to which he /she is tagged to is created or modified. However, if the app is not launched on the device, they do not receive these alerts. You must configure Push Notifications to send the alerts to the workers even when the app is not opened in the device.
- Manage Resource File in SMP
  Resource File in SMP helps you centrally administer and manage common settings.
Configure Roles and Authorization for Products
Configure roles and provide authorizations to do tasks using Innovapptive products.

Generate certificate for SSO2 Generator (DSA)

To generate certificate for SSO2 Generator DSA:

In command prompt, execute openssl dsaparam -out dsaparam.pem 2048.

Figure 1. DSA Parameter Command
Create a new DSA key based on the parameters:
openssl gendsa -out smp_sso2.pem dsaparam.pem
Figure 2. Create DSA Key
Create a self-signed certificate. The common name should match with the SID of your system, for example, SMP.
openssl req -days 730 -x509 -new -key smp_sso2.pem -out smp_sso2.cer
Figure 3. SSO2 - Self-signed Certificate

The output shown here is the certificate (public part), which you import later in your backend system.
Note: As the Issue SID for SAPSSO2 Generator accepts only three characters with capital letters, use SMP for testing.
Create a keypair (PKCS12 keystore) and import this keypair into SMP keystore. (Define a password for this keystore). The attribute name defines the alias of the keypair inside this keystore.
openssl pkcs12 -export -in smp_sso2.cer -name smp_sso2 -inkey smp_sso2.pem -out smp_sso2.p12
Figure 4. PKCS12 keypair command