如果 IBM® Enterprise Records Web 應用程式自動配置了「儲存器管理程式鑑別 (CMA)」選項,且您想要搭配重新導向選項來使用 Secure Socket Layer (SSL),視應用程式伺服器而定,請執行下列程序,通過更新 web.xml 檔來啟用 IBM Enterprise Records Web 應用程式的 SSL。 完整 SSL 環境不需要這些步驟。
ier_install_path/RecordsManager/WEB-INF/web.xml
<security-constraint> <web-resource-collection> <web-resource-name>action</web-resource-name> <description>Define the container secured resource</description> <url-pattern>/</url-pattern> <url-pattern>/*</url-pattern> </web-resource-collection> <auth-constraint> <role-name>All Authenticated</role-name> </auth-constraint> <user-data-constraint> <description>User data constraints</description> <transport-guarantee>NONE</transport-guarantee> </user-data-constraint> </security-constraint>變更為:
<security-constraint> <web-resource-collection> <web-resource-name>action</web-resource-name> <description>Define the container secured resource</description> <url-pattern>ContainerLogin.jsp</url-pattern> </web-resource-collection> <auth-constraint> <role-name>All Authenticated</role-name> </auth-constraint> <user-data-constraint> <description>User data constraints</description> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> </security-constraint>這項變更也會移除第二次出現的這一行:
<url-pattern>/*</url-pattern>
ier_install_path/RecordsManager/WEB-INF/web.xml
<user-data-constraint> <description>User data constraints</description> <transport-guarantee>NONE</transport-guarantee> </user-data-constraint>變更為:
<user-data-constraint> <description>User data constraints</description> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint>