InfoCenter Home >
5: Securing applications -- special topics >
5.2: Introduction to custom registries
WebSphere
Application Server supports the following types of registries:
- Local registries. Local registries are limited to
single-machine or Windows NT domain-controller environments
and a single
application server. WebSphere Application Server does not support
multiple node, multiple application servers or secure delegation when
the Local registry is used as the user registry.
- Centralized registries, which use the Lightweight Third Party
Authentication (LTPA) protocol to access a supported Lightweight
Directory Access Protocol (LDAP) service. Centralized
registries are limited to the set of WebSphere-supported LDAP
directory services. The interface for custom registries allows
WebSphere applications to take advantage of new or existing registries
that are not otherwise accessible.
- Customer-defined registries, by using a WebSphere interface that
facilitates access to custom registries.
For the custom-registry choice, WebSphere Application Server provides an interface that
defines a set of methods that WebSphere Application Server calls to perform
security operations for applications configured to use the custom
registry. A developer must implement the methods in this interface by
using calls to the desired registry. This layer of code allows the
desired registry to be plugged into the WebSphere environment. The
interface defines a very general set of methods, so it can be used to
encapsulate a wide variety of registries.
|
|