InfoSphere Enterprise Records, Version 4.5.1.3+              

Optionally adding support for SSL (CMA with SSL redirect)

If InfoSphere™ Enterprise Records web application was installed with the Container Manager Authentication (CMA) option, and you want to use Secure Socket Layer (SSL) with the redirect option, then perform the following procedures, depending on your application server, to enable SSL for your InfoSphere Enterprise Records web application by updating its web.xml file. These steps are not required for full SLL environments.

  1. WebSphere: Modify the web.xml file in the <RM_install_path>/FileNet/RM/ RecordsManager/WEB-INF directory:
    1. Copy the <security_constraint> section, as shown in the next step, and paste the new copied section directly after the original.
    2. Make changes to the newly inserted <security_constraint> section as follows (changes in bold): Change from:
      <security-constraint>
        	<web-resource-collection>
            <web-resource-name>action</web-resource-name>
            <description>Define the container secured resource</description>
            <url-pattern>/</url-pattern>
            <url-pattern>/*</url-pattern>
      		</web-resource-collection>
        	<auth-constraint>
            <role-name>All Authenticated</role-name>
        	</auth-constraint>
        	<user-data-constraint>
            <description>User data constraints</description>
            <transport-guarantee>NONE</transport-guarantee>
        	</user-data-constraint>
      </security-constraint>
      to:
      <security-constraint>
        <web-resource-collection>
          <web-resource-name>action</web-resource-name>
            <description>Define the container secured resource</description>
            <url-pattern>/ContainerLogin.ContainerLogin.jsp</url-pattern>
        </web-resource-collection>
        <auth-constraint>
            <role-name>All Authenticated</role-name>
        </auth-constraint>
        <user-data-constraint>
            <description>User data constraints</description>
            <transport-guarantee>CONFIDENTIAL</transport-guarantee>
        </user-data-constraint>
      </security-constraint>
      The change also removes the second occurrence of this line:
      <url-pattern>/*</url-pattern>
    3. Save your changes to the web.xml file.
  2. WebLogic and JBoss: Modify the web.xml file in the <RM_install_path>/FileNet/RM/RecordsManager/WEB-INF directory:
    1. In the <security_constraint> section, change the parameter, as follows, from
      <user-data-constraint>
          <description>User data constraints</description>
          <transport-guarantee>NONE</transport-guarantee>
      </user-data-constraint>
      to:
      <user-data-constraint>
          <description>User data constraints</description>
          <transport-guarantee>CONFIDENTIAL</transport-guarantee>
      </user-data-constraint>
    2. Save your changes to the web.xml file.


Feedback

Last updated: November 2010


© Copyright IBM Corporation 2010.
This information center is powered by Eclipse technology. (http://www.eclipse.org)