Setting up security for a stand-alone WebSphere Process Server

Increase the security of a stand-alone installation of WebSphere Process Server by taking the following steps.

Steps for this task

  1. Start WebSphere Process Server.
  2. Launch the administrative console. If global security is not yet enabled you can use any user name to access the administrative console.
  3. Enable global security.
    Expand Security, click Global security, and select the Enable global security check box.
    Note: Selecting the Enable global security check box results in the Enforce Java 2 security check box being checked.
  4. Optional: Enable Java 2 security permission checking, if required.

    Select the Enforce Java 2 security check box to enforce Java 2 security.

    With Java 2 security enabled, an application that requires more Java 2 security permissions than are granted in the default policy might fail to run properly until the required permissions are granted in either the app.policy file or the was.policy file of the application. AccessControl exceptions are generated by applications that do not have all the required permissions. For more information about Java 2 security, see the topic on Configuring Java 2 security policy files in the WebSphere Application Server Network Deployment documentation.

  5. Set the authentication mechanism to Lightweight Third Party Authentication (LTPA).

    Click Lightweight Third Party Authentication (LTPA) on the Active authentication mechanism list. LTPA is the only authentication mechanism supported by WebSphere Process Server. For more details on configuring LTPA as the authentication mechanism, see the Configuring single signon topic in the WebSphere Application Server Network Deployment documentation.

  6. Enter a password to be used for LTPA key storage.

    Expand Authentication mechanisms, and select LTPA. In the Password field, enter a password and type the same password in the Confirm password field. This password is used for the LTPA key storage. Confirm your changes by clicking Apply.

  7. Provide necessary parameters for the user registry.

    The following table describes the actions that you must take to provide required security information for the selected user registry.

    Table 1. Choices of user registry and actions required to provide security information for that user registry.
    User registry Action
    Operating System Under User registries, choose Local OS. On the Local OS user registry page, provide a user name and password.
    Note: This user name is used as the identity of the server. The user is automatically added to the Administrator role.
    Lightweight Directory Access Protocol (LDAP) See Configuring Lightweight Directory Access Protocol (LDAP) as the user registry for information about configuring LDAP as your user registry.
  8. Save your changes

    Click OK.

  9. Restart the WebSphere Process Server.
Related information
Configuring Java 2 security policy files

Last updated: Tue 24 Oct 2006 22:01:09

(c) Copyright IBM Corporation 2005, 2006.
This information center is powered by Eclipse technology (http://www.eclipse.org)