Securing data grids

After you create your data grids, the security of the data grid is disabled by default. You can change the security settings for a data grid to restrict access to a certain user or group of users.

About this task

Important: When you change the security settings for a data grid, the data grid automatically restarts. When the data grid is restarted, any data that is in the data grid is lost. Configure the security for your data grids before you begin to save data in the data grid.
Communication through the REST gateway is always secure, even if you do not have security enabled on the data grid. See REST gateway: Security configuration for more information.

Procedure

  1. In the user interface, navigate to the data grid settings. Click Data Grid > data_grid_type. Click the data_grid_name that you want to edit.
  2. Enable security or authorization for the data grid. Click Enable security to enable any user that has access to the user interface to access the data grid. If you want to further restrict access, click Enable authorization. With authorization enabled, you can specify a list of users or user groups in the Access granted to list. When enable authorization is selected, only users that are listed in this access list can access the data grid data.
    When you change the security and authorization settings, there is a timeout value of five minutes.
    • Authentication timeout: If you change a user password for a user that has already been authenticated to the data grid, the original credential is still valid for up to five minutes.
    • Authorization timeout: If you remove a permission for a user, that user continues to have the permission for up to five minutes. This timeout applies only for permissions that are removed. If you add a permission to a user, the user gets the permissions immediately.
Parent topic: Administering data grids
Parent topic: Security
Related concepts:
IBM WebSphere DataPower XC10 Appliance security overview
User permissions
xcadmin password
Related tasks:
Configuring IBM WebSphere DataPower XC10 Appliance user interface security
Managing users and groups
Configuring Transport Layer Security (TLS)
Configuring your appliance to authenticate users with an LDAP directory
Related reference:
REST gateway: Security configuration