You use the wsadmin utility to display the properties in the configuration of the Simple and Protected GSS-API Negotiation Mechanism (SPNEGO) trust association interceptor (TAI) for WebSphere® Application Server.
In WebSphere Application Server Version 6.1, a trust association interceptor (TAI) that uses the Simple and Protected GSS-API Negotiation Mechanism (SPNEGO) to securely negotiate and authenticate HTTP requests for secured resources was introduced. In WebSphere Application Server 7.0, this function is now deprecated. SPNEGO web authentication has taken its place to provide dynamic reload of the SPNEGO filters and to enable fallback to the application login method.
depfeatVerify that end-user desktop browsers are configured to support SPNEGO authentication, that the SPNEGO TAI is enabled, that the Java virtual machine (JVM) property is set and, that WebSphere Application Server is configured to enable the operation of the SPNEGO TAI.
You use the wsadmin utility to configure the SPNEGO TAI for WebSphere Application Server:wsadmin>$AdminTask showSpnegoTAIProperties com.ibm.ws.security.spnego.SPN1.filter=request-url!=noSPNEGO;request-url%=snoop com.ibm.ws.security.spnego.SPN1.hostName=central01.austin.ibm.com com.ibm.ws.security.spnego.SPN2.hostName=wssecpd.austin.ibm.com wsadmin>
wsadmin>$AdminTask showSpnegoTAIProperties -interactive Show SPNEGO TAI configuration properties. Display SPNEGO TAI configuration properties. Service Principal Name identifier (spnId): 1 Show SPNEGO TAI configuration properties. F (Finish) C (Cancel) Select [F, C]: [F] WASX7278I: Generated command line: $AdminTask showSpnegoTAIProperties {-spnId 1} com.ibm.ws.security.spnego.SPN1.filter=request-url!=noSPNEGO;request-url%=snoop com.ibm.ws.security.spnego.SPN1.hostName=central01.austin.ibm.com com.ibm.ws.security.spnego.SPN1.trimUserName=true wsadmin>
In this information ...Related reference
| IBM Redbooks, demos, education, and more(Index) |