To configure UDDI security, you can use the UDDI Version 3 security
API or the UDDI Version 1 and Version 2 publish security features.
Because WebSphere Application Server security is enabled, WebSphere Application
Server data confidentiality management is independent of UDDI security.
About this task
When WebSphere Application Server security is enabled, use the
administrative console to complete the following steps:
Procedure
- In the navigation pane, click .
- In the content pane, click the UDDI registry application. Under Additional
Properties on the right hand side, click Map security
roles to users/groups.
- Set the WebSphere Application Server security role mappings to
Everyone for the following UDDI services:
- Versions 1 and 2 SOAP publish service (SOAP_Publish _User)
- Version 3 publish service (V3SOAP_Publish_User_Role)
- Version 3 custody transfer service (V3SOAP_CustodyTransfer_User_Role)
- Version 3 security service (V3SOAP_Security_User_Role)
Changing the role mappings to Everyone prevents WebSphere
Application Server security from overriding UDDI security.
- Ensure that UDDI Policy is set to require the use of authentication
tokens for the UDDI Version 3 Publish and Custody Transfer services (use of
authentication tokens is already required for Version 1 and Version 2 Publish
services). To do this, click > uddi_node_name, and under Policy
Groups click APIs. Select the Authorization
for publish and Authorization for custody transfer check
boxes. (Select the Authorization for inquiry check
box if you require authentication for UDDI Inquiry services).
- Click OK.
Results
With this configuration, no Security Role authentication restriction
is imposed, but the credentials (user name and password) associated with the
authentication token are authenticated by WebSphere Application Server.