WebSphere Application Server Version 6.1 Feature Pack for Web Services
             Operating Systems: AIX, HP-UX, i5/OS, Linux, Solaris, Windows, z/OS

             Personalize the table of contents and search results

Configuring UDDI Security with WebSphere Application Server security enabled

To configure UDDI security, you can use the UDDI Version 3 security API or the UDDI Version 1 and Version 2 publish security features. Because WebSphere Application Server security is enabled, WebSphere Application Server data confidentiality management is independent of UDDI security.

About this task

When WebSphere Application Server security is enabled, use the administrative console to complete the following steps:

Procedure

  1. In the navigation pane, click Applications > Enterprise Applications.
  2. In the content pane, click the UDDI registry application. Under Detail Properties click Security role to user/group mapping.
  3. Set the WebSphere Application Server security role mappings to Everyone for the following UDDI services:
    • Versions 1 and 2 SOAP publish service (SOAP_Publish _User)
    • Version 3 publish service (V3SOAP_Publish_User_Role)
    • Version 3 custody transfer service (V3SOAP_CustodyTransfer_User_Role)
    • Version 3 security service (V3SOAP_Security_User_Role)
    Changing the role mappings to Everyone prevents WebSphere Application Server security from overriding UDDI security.
  4. Ensure that UDDI Policy is set to require the use of authentication tokens for the UDDI Version 3 Publish and Custody Transfer services (use of authentication tokens is already required for Version 1 and Version 2 Publish services). To do this, click UDDI > UDDI Nodes > uddi_node_name, and under Policy Groups click API policies. Select the Authorization for publish and Authorization for custody transfer check boxes. (Select the Authorization for inquiry check box if you require authentication for UDDI Inquiry services).
  5. Click OK.

Results

With this configuration, no Security Role authentication restriction is imposed, but the credentials (user name and password) associated with the authentication token are authenticated by WebSphere Application Server.

Note: When WebSphere Application Server security is enabled, WebSphere Application Server data confidentiality management is independent of UDDI security and is managed as described in Configuring the UDDI registry to use WebSphere Application Server security.



In this information ...


IBM Redbooks, demos, education, and more


Use IBM Suggests to retrieve related content from ibm.com and beyond, identified for your convenience.

This feature requires Internet access.

IBM Suggests
Task topic    

Terms of Use | Feedback

Last updated: Nov 25, 2008 2:35:59 AM CST
http://publib.boulder.ibm.com/infocenter/wasinfo/v6r1/index.jsp?topic=/com.ibm.websphere.wsfep.multiplatform.doc/info/ae/ae/twsu_uddisecurity1.html