$TXT Created by CHAN,ALAN at NXT.KERNEL.FO-OAKLAND.MED.VA.GOV (KIDS) on Friday, 09/09/05 at 17:50 ============================================================================= Run Date: JUN 13, 2006 Designation: XU*8*329 Package : XU - KERNEL Priority: Mandatory Version : 8 SEQ #338 Status: Released Compliance Date: JUL 14, 2006 ============================================================================= Associated patches: (v)XU*8*265 <<= must be installed BEFORE `XU*8*329' (v)XWB*1.1*35 <<= must be installed BEFORE `XU*8*329' (v)XU*8*337 <<= must be installed BEFORE `XU*8*329' Subject: In Support of Kernel Authentication & Authorization for J2EE (KAAJEE) Category: - Other - Routine - Enhancement (Mandatory) Description: ============ Patch Tracking #: FORUM message #40691114 and MS Exchange message with subject titled 'VistA Package/Patch Tracking Message Blind Rehab and Dependants' Test sites: Augusta, Puget Sound, Hines Blood Bank Clearance: 05/05/2005 Kernel is the designated custodial software package of the Kernel Authentication & Authorization for J2EE (KAAJEE)-related software. KAAJEE comprises multiple patches and software releases from several VistA applications. This patch contains the VistA M Server-side components in support of KAAJEE. This patch also briefly describes some of the Java Server-side components required by KAAJEE but not directly related to the VistA M Server. VistA M Server-side Components: =============================== The contents of this patch include the following build components: Routines: BUILD COMPONENT: ROUTINE ENTRIES: XUSKAAJ ACTION: SEND TO SITE Options: BUILD COMPONENT: OPTION ENTRIES: XUS KAAJEE WEB LOGON ACTION: SEND TO SITE ENTRIES: XUCOMMAND ACTION: USE AS LINK FOR MENU ITEMS The XUS KAAJEE WEB LOGON is a "B"-type option. This option contains references to the following RPCs in its "RPC" multiple: * XUS ALLKEYS * XUS KAAJEE GET USER INFO * XUS KAAJEE LOGOUT This option has no effect on those RPCs as such. However, having this option assigned allows KAAJEE to call these RPCs on behalf of the end-user. The XUCOMMAND "Menu"-type option is only used to link XUS KAAJEE WEB LOGON to XUCOMMAND. As all authenticated users have access to XUCOMMAND, this linkage enables all users to have access to all RPCs listed under the XUS KAAJEE WEB LOGON "B"-type option. RPCs: BUILD COMPONENT: REMOTE PROCEDURE ENTRIES: XUS KAAJEE GET USER INFO ACTION: SEND TO SITE ENTRIES: XUS KAAJEE LOGOUT ACTION: SEND TO SITE Java Server-side Requirements: ============================== This section should be considered as background information only and not directly related to requirements for the VistA M Server-side. KAAJEE will most likely be deployed on an application server at a central location instead of being co-located with the facility that hosts the VistA M-based servers. The KAAJEE software provides the Java server-side authentication component. In conjunction with VistALink V. 1.5, it facilitates authentication and authorization for Web-based applications via Kernel on a VistA M-server. KAAJEE is deployed as a Java Archive (JAR) file along with other components (e.g., JavaServer pages [JSP], HyperText Mark-up Language [HTML] pages, etc.) inside an application's Enterprise Archive (EAR) file. The application's EAR file is deployed on a J2EE compliant application server. Currently, KAAJEE supports the BEA WebLogic V. 8.1 SP4 Application Server. Besides the Vista M Server components listed above, KAAJEE also requires external relational databases. For this requirement, KAAJEE needs two sets of schemas: * One schema must have a replicated clone of the Standard Data Service (SDS) tables. The SDS tables in this schema are the authoritative source for institution names and station numbers. * A second schema must have the Principals and GroupMembers tables to be used by the KAAJEE Security Service Providers (SSPIs) for a temporary user store. This temporary user store serves as a cache for user and role information to be used for authentication and authorization purposes. For further details regarding KAAJEE requirements, please refer to the KAAJEE Deployment and Installation Guides located on the VDL. This patch will be available in the form of a KIDS file from one of the following OI Field Office ANONYMOUS.SOFTWARE directories via FTP: IRM Field Office FTP Address ================ =========== Albany ftp.fo-albany.med.va.gov Hines ftp.fo-hines.med.va.gov Salt Lake City ftp.fo-slc.med.va.gov VistA Download Site download.vista.med.va.gov In addition, KAAJEE, Kaajee Security Provider and related documentation will be available from the above FTP sites shortly after Apr. 10, 2006. Required Builds: ================ XOBS 1.5 XU*8.0*265 XU*8.0*337 XWB*1.1*35 Routine Summary: ================ The following routines are included in this patch. The second line of each of these routines now looks like: ;;8.0;KERNEL;**[Patch List]**;Jul 10, 1995 Checksums: ========== Checksums shown are NEW Checksums The following routines are included in this patch. The second line of each of these routines now looks like: ;;8.0;KERNEL;**[Patch List]**;Jul 10, 1995 Checksums Routine Old New Patch List XUSKAAJ n/a 11494891 **329** Sites should use CHECK1^XTSUMBLD to verify checksums. List of preceding patches: none Installation Instructions: ========================== Install Time less than 5 minutes. 1. Users ARE allowed to be on the system during the installation. You DO NOT need to stop TaskMan. 2. Use the 'INSTALL/CHECK MESSAGE' option on the PackMan menu. This option will load the KIDS (Kernel Installation and Distribution System) package onto your system. 3. The patch has now been loaded into a transport global on your system. On the KIDS menu, select the 'Installation' menu and use the following options: 2 Verify Checksums in Transport Global 3 Print Transport Global 4 Compare Transport Global to Current System 5 Backup a Transport Global 6 Install Package(s) Select KIDS OPTION: Install ======= Install Package(s) Select INSTALL NAME: XU*8.0*329 ========= Logons DO NOT need to be inhibited. No Options or Protocols need to be placed out-of-order. Want KIDS to INHIBIT LOGONs during the install? YES// NO == Want to DISABLE Scheduled Options, Menu Options, and Protocols? NO == Routine Information: ==================== The checksums below are new checksums, and can be checked with CHECK1^XTSUMBLD. Routine Name: XUSKAAJ Before: n/a After: B11494891 **329** ============================================================================= User Information: Entered By : CHAN,ALAN Date Entered : OCT 29, 2003 Completed By: ALDERMAN,MATT S Date Completed: MAY 11, 2006 Released By : LASHLEY,ANTHONY Date Released : JUN 13, 2006 ============================================================================= Packman Mail Message: ===================== $END TXT