如果 IBM® Enterprise Records Web 应用程序自动配置为使用容器管理认证 (CMA) 选项,并且您要对重定向选项使用安全套接字层 (SSL),那么请根据您的应用程序服务器执行以下过程,通过更新 IBM Enterprise Records Web 应用程序的 web.xml 文件来为其启用 SSL。对于完全 SSL 环境,无需执行这些步骤。
ier_install_path/RecordsManager/WEB-INF/web.xml
<security-constraint> <web-resource-collection> <web-resource-name>action</web-resource-name> <description>Define the container secured resource</description> <url-pattern>/</url-pattern> <url-pattern>/*</url-pattern> </web-resource-collection> <auth-constraint> <role-name>All Authenticated</role-name> </auth-constraint> <user-data-constraint> <description>User data constraints</description> <transport-guarantee>NONE</transport-guarantee> </user-data-constraint> </security-constraint>更改为:
<security-constraint> <web-resource-collection> <web-resource-name>action</web-resource-name> <description>Define the container secured resource</description> <url-pattern>ContainerLogin.jsp</url-pattern> </web-resource-collection> <auth-constraint> <role-name>All Authenticated</role-name> </auth-constraint> <user-data-constraint> <description>User data constraints</description> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> </security-constraint>进行此更改还会除去下面这一行的第二次出现:
<url-pattern>/*</url-pattern>
ier_install_path/RecordsManager/WEB-INF/web.xml
<user-data-constraint> <description>User data constraints</description> <transport-guarantee>NONE</transport-guarantee> </user-data-constraint>更改为:
<user-data-constraint> <description>User data constraints</description> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint>