Configuring WebSEAL for use with WebSphere Application Server
Use this topic to set the SSO password in WebSEAL for single sign-on to WebSphere® Application Server.
About this task
Communications over the junction should use Secure Sockets Layer (SSL) for increased security. Setting up SSL across this junction requires that you configure the HTTP Server used by WebSphere Application Server, and WebSphere Application Server itself, to accept inbound SSL traffic and route it correctly to WebSphere Application Server. This activity requires importing the necessary signing certificates into the WebSEAL certificate keystore, and possibly also the HTTP Server certificate keystore.
TAI++
server task webseald-server create -t ssl -b supply -c iv_creds
-h host_name -p websphere_app_port_number junction_name
TAI
server task webseald-server create -t ssl -b supply -c iv_user
-h host_name -p websphere_app_port_number junction_name
- If warning messages are displayed about the incorrect setup of certificates and key databases, delete the junction, correct problems with the key databases, and recreate the junction.
- The junction can be created as -t tcp or -t ssl, depending on your requirements.
For single sign-on ( SSO) to WebSphere Application Server the SS) password must be set in WebSEAL. To set the password, complete the following steps: