The bus security panel allows you to enable or disable bus security,
and administer bus security features such as mediation authentication
alias and permitted transports.
Before you begin
You can either set administrative security to enabled, or have both
administrative and bus security policy enabled.
About this task
The
Bus Security flag results in client authentication being
performed and authorization policy being enforced. This flag is read-only
if administrative security is disabled. You set the inter-engine authentication
alias to authenticate messaging engines and communication between them. Setting mediations
authentication alias allows the messaging engine to access mediations when
application security is enabled. The bus security panel contains links to
panels that allow the administration of users and groups in the bus connectors
role, and the administration of permitted transports.
Procedure
- Open the administrative console, and click Service Integration > Buses.
- In the content pane, click on the name of the bus for which you
want to configure the users and groups. When a new page appears, click on Security under Additional
Properties.
- In the content pane, next to the bus that you wish to configure
security for, clicking on Enabled or Disabled link
in the security column also takes you to the bus security page.
- Modify the following attributes:
- Enable bus security
- Select this option to inherit the secure administration setting of the cell. Deselect this option if you always wish to disable bus security. Creating
a bus when administrative security is enabled results in a bus that is secure,
by default. If administrative security is disabled an insecure bus is created.
- Inter-engine authentication alias
- The name of the authentication alias used to authorize communication between messaging engines on the bus. This
field can be left blank. If a value is specified, and bus security is enabled,
incoming connections from other messaging engines are controlled to prevent
unauthorized messaging engines from establishing a connection.
- Permitted transports
- The permitted transports group of radio buttons can be used to specify
what transports should be used. There are three modes:
- The first allows the use of any messaging transport chain defined to any
bus member.
- The second allows the use of only messaging transport chains that are
protected by an SSL chain.
- The third only allows the transports in the specified list.
The Permitted transport link under Related
Items allows you to add and remove permitted transports.
- Mediations authentication alias
- The name of the authentication alias used to authorize the bus to access
mediations.