Configuring users and groups in the bus connector role

Use this task to add, remove, and list users and groups with permission to connect to a local bus using the administrative console.

Procedure

  1. Open the administrative console, and click Service Integration > Buses.
  2. To get to the Security configuration panel you can:
    • In the content pane, click on the name of the bus for which you want to configure the users and groups. When a new page appears, click on Security under Additional Properties.
    • In the content pane, next to the bus that you wish to configure security for, clicking on Enabled or Disabled link in the security column.
  3. In the Security configuration panel, click on Users and Groups in the bus connector Role under Additional Properties.
  4. A new panel appears and shows a list of users and groups that are in the bus connector role. This panel allows the administrator to add and remove users and groups from the bus connector role. By default this list is empty for newly created buses.
    Important: The bus does not accept negative roles. Removing a user's access to the bus connector role will not work if that user is in a group that has the bus connector role.
  5. To add a user or group to the bus connector role click New.
  6. On the Configuration pane to add a user or group to the bus connector role, there are three users or groups you can add:
    • Group name: Give a specified group the bus connector role.
    • User name: Give a specified user the bus connector role.
    • Server: The server identity. This represents the identity of a WebSphere® Application Server. Using the server identity for a JMS message-driven bean (MDB) is not supported.
    • Everyone: All users connecting in. If this is specified then users are able to connect without authenticating. These users are treated as anonymous users.
    • AllAuthenticated: All users that have authenticated to the bus. This results in the group AllAuthenticated being added to the authorization model.
    Note: No checks are made to ensure that the user or group exists in the configured user registry. If the user or group is already in the bus connector role the action is ignored and results in a warning.
    Note: When specifying the bus connector role, distinguished name (DN) must be used as the group name. Using common name (CN) causes problems in authorization. For more information on authorization problems refer to Service integration bus security - troubleshooting tips



In this information ...


IBM Redbooks, demos, education, and more

(Index)

Use IBM Suggests to retrieve related content from ibm.com and beyond, identified for your convenience.

This feature requires Internet access.

Task topic Task topic    

Terms and conditions for information centers | Feedback

Last updatedLast updated: Aug 31, 2013 4:28:44 AM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=pix&product=was-nd-mp&topic=tjr0345_
File name: tjr0345_.html