You can configure the UDDI registry to use the UDDI Version
3 security API or the UDDI Version 1 and Version 2 publish security
features. Because WebSphere® Application Server
security is enabled, WebSphere Application Server
data confidentiality management is independent of UDDI security.
Before you begin
WebSphere Application Server security must
be enabled.
About this task
You can configure the UDDI registry to use the UDDI security
features if this is a requirement. However, for production use, another
option is to configure the UDDI Version 3 registry to use WebSphere Application Server security.
The
UDDI Version 1 and Version 2 publish security features involve the
use of authentication tokens.
To configure the UDDI registry
to use the UDDI security features, you use the administrative console.
Procedure
- In the navigation pane of the administrative console, click .
- In the content pane, click the UDDI registry application.
- Under Additional Properties,
click Map security roles to users/groups.
- Set the WebSphere Application Server security role mappings
to Everyone for the following UDDI services:
- Versions 1 and 2 SOAP publish service (SOAP_Publish _User)
- Version 3 publish service (V3SOAP_Publish_User_Role)
- Version 3 custody transfer service (V3SOAP_CustodyTransfer_User_Role)
- Version 3 security service (V3SOAP_Security_User_Role)
This change to the role mappings ensures that WebSphere Application Server security cannot
override UDDI security.
- For the UDDI Version 3 Publish and Custody Transfer services,
ensure that the UDDI Policy is set to require the use of authentication
tokens. The use of authentication tokens is already required for Version
1 and Version 2 Publish services.
- Click .
- Select Authorization for publish and Authorization
for custody transfer .
- Optional: If you require authentication
for UDDI Inquiry services, select Authorization for inquiry .
- Click OK.
Results
After the configuration is complete, WebSphere Application
Server authenticates the credentials (user name and password) that
are associated with the authentication token. No Security Role authentication
restriction is imposed.
For details of WebSphere Application
Server data confidentiality management, see Configuring the UDDI registry to use WebSphere Application Server security.