Complete the following tasks to implement security before, during,
and after installing WebSphere® Application Server.
Procedure
Secure your environment before installation.
This step describes how to perform WebSphere Application Server installation
with proper authority on different platforms. For more information refer to Securing your environment before installation.
Prepare the operating system for installation of WebSphere Application Server. This step describes how to prepare the different operating
systems for installation of WebSphere Application Server. For more information,
see "Preparing the operating system for product installation" in the InfoCenter.
Install WebSphere Application Server.
This step describes how to install WebSphere Application Server on the z/OS® platform.
For more information, see "Installing the product and additional software"
in the InfoCenter.
Migrate security configurations from previous releases during installation,
when you are prompted to do so. This step describes how to migrate
security configurations from a previous release of WebSphere Application Server to WebSphere Application ServerVersion 7.0.
For more information, see "Migrating
product configurations" in the InfoCenter.
Optional: You can create a profile
during install time. If you elect to do so, administrative security is enabled
for that profile "out of the box" by default. A panel is displayed during
profile creation time and enabling administrative security is selected
by default. If you elect to keep this as the default, you must supply an
administrative user ID and password. This user ID is created in a federated
repository, which is the default user registry when enabling administrative
security at profile creation time.
If you go into the advanced profile creation, a panel is available
for changing the default settings for your certificate, a root certificate (used
to sign your personal certificate) and a personal certificate (used
to sign/encrypt data over the network). Ensure that the root certificate has
a long lifetime and the personal certificate a shorter one. Import your own
personal certificate and or root certificate. If your personal certificate
is signed by the certificate authority (CA), it is not important to change
your root certificate. You should also change the default keystore password
to something more secure.
Optional: During customization of a
standalone application server or WebSphere Application Server, Network Deployment cell, you can enable
administrative security "out of the box" by using either a z/OS security
product or WebSphere Application Server to manage users, groups, and the security policy.
Secure your environment after installation. This step
provides information on how to protect password information after you install WebSphere Application Server. For more information, see Securing your environment after installation.
For information about enabling security after customization
is complete, see Enabling security.
Use IBM Suggests to retrieve related content from ibm.com and beyond, identified for your convenience.
This feature requires Internet access.
Most of the following links will take you to information that is not part of the formal product documentation and is provided "as is." Some of these links go to non-IBM Web sites and are provided for your convenience only and do not in any manner serve as an endorsement by IBM of those Web sites, the material thereon, or the owner thereof.
Last updated: Oct 21, 2010 7:37:48 AM CDT http://www14.software.ibm.com/webapp/wsbroker/redirect?version=v701sca&product=was-nd-mp&topic=tsecinstall File name: tsec_install.html