Propagating security attributes among application servers
Use the security attribute propagation feature of WebSphere® Application Server to send security attribute information regarding the original login to other servers by using a token. This topic helps to configure WebSphere Application Server to propagate security attributes to other servers.
About this task
You also can choose whether to enable Remote Method Invocation (RMI) outbound and inbound propagation, which is commonly called downstream propagation. Typically both types of propagation are enabled for any given cell. In some cases, you might want to choose a different option for a specific application server using the server security panel within the specific application server settings.
To access the server security panel in the administrative console, click Servers > Application Servers > server_name. Under Security, click Server security.
Complete the following steps to configure WebSphere Application Server for security attribute propagation:
Procedure
Results
What to do next
- Click Server > Application Servers > server_name.
- Under Security, click Server security.
- Select the RMI/IIOP security for this server overrides cell settings option.
- Disable security attribute propagation for inbound requests by clicking CSI inbound authentication under Additional Properties and clearing the Security attribute propagation option.
- Disable security attribute propagation for outbound requests by clicking CSI outbound authentication under Additional Properties and clearing the Security attribute propagation option.
To disable security attribute propagation on the cell level, undo each of the steps that you completed to enable security attribute propagation in this task.