You can configure the UDDI registry to use the UDDI Version
3 security API or the UDDI Version 1 and Version 2 publish security
features. Because WebSphere® Application
Server security is enabled, WebSphere Application
Server data confidentiality management is independent of UDDI security.
Before you begin
WebSphere Application
Server security must be enabled.
About this task
You can configure the UDDI registry to use the UDDI security
features if this is a requirement. However, for production use, another
option is to configure the UDDI Version 3 registry to use WebSphere Application Server
security.
The UDDI Version 1 and Version 2 publish security features
involve the use of authentication tokens.
To configure the UDDI
registry to use the UDDI security features, you use the administrative
console.
Procedure
- In the navigation pane of the administrative console, click .
- In the content pane, click the UDDI registry application.
- Under Detail Properties, click Security
role to user/group mapping.
- Set the WebSphere Application
Server security role mappings to Everyone for
the following UDDI services:
- Versions 1 and 2 SOAP publish service (SOAP_Publish _User)
- Version 3 publish service (V3SOAP_Publish_User_Role)
- Version 3 custody transfer service (V3SOAP_CustodyTransfer_User_Role)
- Version 3 security service (V3SOAP_Security_User_Role)
This change to the role mappings ensures that WebSphere Application Server
security cannot override UDDI security.
- For the UDDI Version 3 Publish and Custody Transfer services,
ensure that the UDDI Policy is set to require the use of authentication
tokens. The use of authentication tokens is already required for Version
1 and Version 2 Publish services.
- Click .
- Select Authorization for publish and Authorization
for custody transfer .
- Optional: If you require authentication
for UDDI Inquiry services, select Authorization for inquiry .
- Click OK.
Results
After the configuration is complete, WebSphere Application Server authenticates
the credentials (user name and password) that are associated with
the authentication token. No Security Role authentication restriction
is imposed.
For details of WebSphere Application
Server data confidentiality management, see the topic about configuring
the UDDI registry to use WebSphere Application
Server security.