I followed the instructions to enable trusted authentication (XI 3.1 admin guide, page 561+):
created shared secret value in CMC ('my_secret'); checked 'trusted authentication is enabled; set secret validity period to 1; left tmeout at 0
created the TrustedPrinicpal.conf file in C:\Program Files\Business Objects\BusinessObjects Enterprise 12.0\win32_x86
added line to file that reads SharedSecret=my_secret; saved file
edited InfoView's web.xml file located at C:\Program Files\Business Objects\BusinessObjects Enterprise 12.0\warfiles\WebApps\InfoViewApp\WEB-INF
made the following changes:
<context-param>
<param-name>siteminder.enabled</param-name>
<!-- <param-value>true</param-value> -->
<param-value>false</param-value>
</context-param>
<context-param>
<param-name>sso.enabled</param-name>
<!-- <param-value>false</param-value> -->
<param-value>true</param-value>
</context-param>
<context-param>
<param-name>trusted.auth.user.retrieval</param-name>
<param-value>QUERY_STRING</param-value>
</context-param>
<context-param>
<param-name>trusted.auth.user.param</param-name>
<param-value>user_name</param-value>
</context-param>
restarted tomcat and server intelligence agent (probably not necessary, but did it just for good measure)
attempted to logon to InfoView: http://localhost:8080/InfoViewApp/logon/start.do?user_name=foobar
didn't get an error message, but it didn't get past the logon page.
What did I miss?