Increasing the security of your Network Deployment environment
requires steps in addition to those required for a stand-alone version of WebSphere Process Server.
Before you begin
You must be running the administrative console on the server which
is acting as the deployment manager.
Why and when to perform this task
Take the following steps to set up security in a Network Deployment
environment.
Steps for this task
- Enable global security.
On the administrative console,
expand Security, click Global security,
and select the Enable global security check box.
- Optional: Enable Java 2 security permission checking,
if required.
Select the Enforce Java 2 security check
box to enforce Java 2 security.
With Java 2 security enabled, an application
that requires more Java 2 security permissions than are granted in the default
policy might fail to run properly until the required permissions are granted
in either the app.policy file or the was.policy file of the application. AccessControl
exceptions are generated by applications that do not have all the required
permissions. For more information about Java 2 security, see the topic on
Configuring Java 2 security policy files in the WebSphere Application Server Information
Center.
- Set the Lightweight Third Party Authentication (LTPA) as the authentication
mechanism.
Click Lightweight Third Party Authentication
(LTPA) on the Active authentication mechanism list.
LTPA is the only authentication mechanism that is supported in WebSphere Process Server.
- Enter a password to be used for LTPA key storage.
Expand Authentication
mechanisms and select LTPA. In the Password field,
enter a password and type the same password in the Confirm password field.
This password is used for the LTPA key storage. Confirm your changes by clicking Apply.
- Configure LDAP as the user registry. You must use LDAP
as the user registry in a network deployment environment. See Configuring Lightweight Directory Access Protocol
(LDAP) as the user registry for details.
- Ensure that the security information is propagated to the nodes
of the cell.
Select the Synchronize with Nodes check
box.
- Save your changes
Click OK.
- Restart the deployment manager, the nodes, and the
servers.