WebSphere WebSphere Application Server Network Deployment, Version 6.1.x Operating Systems: AIX, HP-UX, i5/OS, Linux, Solaris, Windows, z/OS

Configuring users and groups in the bus connector role

Use this task to add, remove, and list users and groups with permission to connect to a local bus using the administrative console.

Procedure

  1. Open the administrative console, and click Service Integration > Buses.
  2. To get to the Security configuration panel you can:
    • In the content pane, click on the name of the bus for which you want to configure the users and groups. When a new page appears, click on Security under Additional Properties.
    • In the content pane, next to the bus that you wish to configure security for, clicking on Enabled or Disabled link in the security column.
  3. In the Security configuration panel, click on Users and Groups in the bus connector Role under Additional Properties.
  4. A new panel appears and shows a list of users and groups that are in the bus connector role. This panel allows the administrator to add and remove users and groups from the bus connector role. By default this list is empty for newly created buses.
    Important: The bus does not accept negative roles. Removing a user’s access to the bus connector role will not work if that user is in a group that has the bus connector role.
  5. To add a user or group to the bus connector role click New.
  6. On the Configuration pane to add a user or group to the bus connector role, there are three users or groups you can add:
    • Group name: Give a specified group the bus connector role.
    • User name: Give a specified user the bus connector role.
    • Server: The server identity. This represents the identity of a WebSphere Application Server. Using the server identity for a JMS message-driven bean (MDB) is not supported.
    • Everyone: All users connecting in. If this is specified then users are able to connect without authenticating. These users are treated as anonymous users.
    • AllAuthenticated: All users that have authenticated to the bus. This results in the group AllAuthenticated being added to the authorization model.
    Note: No checks are made to ensure that the user or group exists in the configured user registry. If the user or group is already in the bus connector role the action is ignored and results in a warning.
    Note: When specifying the bus connector role, distinguished name (DN) must be used as the group name. Using common name (CN) causes problems in authorization. For more information on authorization problems refer to Service integration bus security - troubleshooting tips
Related tasks
Administering bus connector roles
Related reference
Adding users and groups to bus connector roles using the wsadmin tool
Removing users and groups from bus connector roles using the wsadmin tool
Listing users and groups in bus connector roles using the wsadmin tool

Task topic

Terms of use | Feedback


Timestamp icon Last updated: 26 February 2009
http://publib.boulder.ibm.com/infocenter/wasinfo/v6r1/index.jsp?topic=/com.ibm.websphere.pmc.nd.multiplatform.doc/tasks/tjr0345_.html

Copyright IBM Corporation 2004, 2009. All Rights Reserved.
This information center is powered by Eclipse technology. (http://www.eclipse.org)