The default security configuration of IBM Cúram Social Program Management within WebSphere Application Server for z/OS involves the default file-based user registry and a JAAS Login Module. The Default Configuration for IBM WebSphere Application Server section in the Cúram Security Handbook should be referenced for further details on this.
There are a number of alternative security configurations that can be used with WebSphere Application Server for z/OS. The configurations are available to support the use of alternative authentication mechanisms, such as an LDAP directory server or a single sign-on solution.
To avail of a different configuration the properties detailed in the following sections should be set in the AppServer.properties file before running the configure target. Any alternative authentication mechanisms should be configured manually after running the configure target with the relevant properties set. To configure the login module for identity only authentication the curam.security.check.identity.only property should be set to true.This is to ensure that the configured alternative authentication mechanism is used.
The Identity Only Authentication section in the Cúram Security Handbook should be consulted for further details.