During installation, you are prompted for security information so that the WebSphere® ESB environment is immediately secured.
In previous releases of WebSphere ESB, you were prompted for various authentication information during installation. Now all the components default to the primary administrative credentials that you provide. These default values provide basic security, but in order to harden the security of your installation, you should use the administrative console to configure the various components of WebSphere ESB to have appropriate security identities.
When you configure WebSphere ESB, you augment the default profile. Part of this profile augmentation process involves providing a user name and password at various portions of the response file. The user names and passwords that you provide must correspond to an identity in the user registry chosen for this profile. The user names and passwords you supply are required when you enable administrative security. You can use either the user registry of the local operating system (this is the default) or the Lightweight Directory Access Protocol (LDAP).
Several components of WebSphere ESB utilize authentication aliases. These aliases are used to authenticate the runtime component for access to databases and messaging engines. The profile augmentation process collects a valid user name and password that is used to create these aliases.