Setting up WebSphere Application Server for z/OS security

WebSphere Application Server for z/OS supports access to resources by clients and servers in a distributed network. Determine how to control access to these resources and prevent inadvertent or malicious destruction of the system or data.

These are the pieces in the distributed network that you must consider:

If you need to protect resources, it is critical that you identify who accesses those resources. Thus, any security system requires client (user) identification, also known as authentication. In a distributed network supported by WebSphere Application Server for z/OS, clients can access resources from:

Additionally, clients can request a service that requires a server to forward the request to another cluster. In such cases, the system must handle delegation, the availability of the client identity for use by intermediate clusters and target clusters.

Finally, in a distributed network, how do you verify that messages being passed are confidential and have not been tampered with? How do you verify that clients are who they claim to be? How do you map network identities to z/OS or OS/390 identities? These issues are addressed by the following support in WebSphere Application Server for z/OS:


Related concepts
Selecting a user registry
Selecting an authentication mechanism
Authorization checking
Setting permission for files created by applications
Setting up RACF protection for DB2
Understanding System Authorization Facility profile names generated by the Customization Dialog
Related tasks
Implementing security considerations
Steps for enabling global security for WebSphere Application Server
Setting up Secure Sockets Layer security for WebSphere Application Server for z/OS
Related reference
Security customization dialog settings
PropFilePasswordEncoder command reference



Searchable topic ID:   csecsettingup
Last updated: Jun 21, 2007 9:56:50 PM CDT    WebSphere Application Server for z/OS, Version 5.0.2
http://publib.boulder.ibm.com/infocenter/wasinfo/index.jsp?topic=/com.ibm.websphere.zseries.doc/info/zseries/ae/csec_settingup.html

Library | Support | Terms of Use | Feedback