You use the wsadmin utility to add properties for the Simple and Protected GSS-API Negotiation Mechanism (SPNEGO) trust association interceptor (TAI) in the security configuration for WebSphere Application Server.
Verify that end-user desktop browsers are configured to support SPNEGO authentication, that the SPNEGO TAI is enabled, that the Java virtual machine (JVM) property is set and, that WebSphere Application Server is configured to enable the operation of the SPNEGO TAI.
Use the wsadmin utility to configure the SPNEGO TAI for WebSphere Application Server:$AdminTask addSpnegoTAIProperties -host myhost.ibm.com -filter user-agent%=IE 6
wsadmin>$AdminTask addSpnegoTAIProperties -interactive Add SPNEGO TAI properties Add SPNEGO TAI configuration properties. *Host name in Service Principal Name (host): central01.austin.ibm.com Service Principal Name identifier (spnId): 1 HTTP header filter rule (filter): Name of class used to filter HTTP requests (filterClass): SPNEGO not supported browser response (noSpnegoPage): NTLM Token received browser response (ntlmTokenPage): Trim User Name browser response (trimUserName): Add SPNEGO TAI properties F (Finish) C (Cancel) Select [F, C]: [F] f WASX7278I: Generated command line: $AdminTask addSpnegoTAIProperties {-host central01.austin.ibm.com} com.ibm.ws.security.spnego.SPN1.hostName=central01.austin.ibm.com wsadmin>
In this information ...Related reference
| IBM Redbooks, demos, education, and more |