Security is an integral consideration when you are planning
to install WebSphere® ESB,
when you are developing and deploying applications, and in the day-to-day
running of your process server.
The following list provides an overview of the tasks you perform
when securing
WebSphere ESB.
For detailed instructions, refer to the related
tasks.- Consider security when you install WebSphere ESB.
- Ensure that security is turned on for your stand-alone or deployment
environment installation.
- Ensure that Administrative security is turned on.
- Ensure that Application security is turned on.
- If required, turn on Java™ 2
security.
- Use the Security Configuration wizard in the administrative console
to configure security options.
- Set up a secure authentication mechanism and user account repository.
- Assign user names and passwords to important business integration
authentication aliases.
- Assign users to appropriate administrative security roles.
- Set up security for specific WebSphere ESB components.
For example, use the Security Manager to set up role-based access
control for timetables in the Business Calendar Manager.
- Secure the applications that you deploy to your process server
environment.
- Develop your applications in WebSphere Integration Developer using
all appropriate security features.
- Deploy your applications to your WebSphere ESB environment.
- Assign users or groups to appropriate security roles to control
access to the newly deployed application.
- Maintain the security of your WebSphere ESB environment.