com.ibm.websphere.security.
trustassociation.types
|
Ensure that webseal is listed. |
com.ibm.websphere.security.
webseal.loginId
|
The WebSEAL trusted user as created in Creating a trusted user account in Tivoli Access Manager
The format of the username
is the short name representation. This property is mandatory. If the property
is not set in the WebSphere Application Server, TAI initialization fails. |
com.ibm.websphere.security.
webseal.id
|
The iv-user header, which is com.ibm.websphere.security.webseal.id=iv-user |
com.ibm.websphere.security.
webseal.hostnames
|
Do not set this property if using Tivoli Access Manager
plug-in for Web servers. The host names (case sensitive) are trusted and expected
in the request header. The host names defined in this property are
compared against the via header. For example: com.ibm.websphere.security.webseal.hostnames=host1
This
includes the proxy host names unless the com.ibm.websphere.security.webseal.ignoreProxy
is set to true. Obtain a list of servers using the server list pdadmin command.
Note: The
via header is part of the standard HTTP header that records the server names
the request passed through.
|
com.ibm.websphere.security.
webseal.ports
|
Do not set this property if using Tivoli Access Manager
Plug-in for Web Servers. The corresponding port number of the host names that
are expected are in the request header. This includes the proxy ports unless
the com.ibm.websphere.security.webseal.ignoreProxy is set to true.
For example: com.ibm.websphere.security.webseal.ports=80,443 |
com.ibm.websphere.security.
webseal.ignoreProxy
|
An optional property that if set to true or yes ignores
the proxy host names and ports in the IV header. By default this property
is set to false. |