This topic applies only on the z/OS operating system.

Setting the customization variables: Security domain

This article describes how to complete the "Define variables" option for a WebSphere Application Server for z/OS security domain.

Before you begin

You must start the Customization Dialog and select the "Configure Security Domain" option. Have Customization tool worksheet: Security Domain completed and available.

Procedure

  1. On the "Configure Security Domain" panel, type the appropriate number in the Option field to select "Define variables" and press Enter.
  2. Fill in the "Security Domain Define Variables" panels using the following screen shots and tips as your guides. When you are done with each panel, press Enter.

    Security Domain Define Variables Panel (1 of 2)

    ------------  WebSphere Application Server for z/OS Customization     --------
    Option  ===>                                                                  
                                                                                  
    Security Domain Configuration (1 of 2)                                        
                                                                                  
       Specify the following to customize the security domain to be selected      
       when configuring one or more servers or cells, then press Enter            
       to continue.                                                               
                                                                                  
     Use security domain identifier in RACF definitions:  N                       
         Security domain identifier....................:                          
                                                                                  
     WebSphere Application Server Configuration Group Information                 
       Group....:  WSCFG1         GID..:  2500                                    
                                                                                  
     WebSphere Application Server Administrator Information                       
       User ID..:  WSADMIN        UID..:  2403                                    
       Password.:  WSADMIN                                                        
                                                                                  
     WebSphere Application Server Unauthenticated User                            
       User ID..:  WSGUEST        UID..:  2402                                    
       Group....:  WSCLGP         GID..:  2502                                    
                                                                                  
     WebSphere Application Server Asynchronous Administration Task                
       User ID..:  WSADMSH        UID..:  2504                                    
                                                                                  
     WebSphere Application Server Servant Group Information                       
       Group....:  WSSR1          GID..:  2501                                    
                                                                                  
     Configure for local OS security registry..........:  Y                       
    Tips:
    • If you have selected SecurityDomainType = "cell-qualified", then set "Use security domain identifier in RACF definitions" to "Y", and enter your chosen security domain name on the next line. If you have selected SecurityDomainType = "none", then set "Use security domain identifier in RACF definitions" to "N".
    • Enter the user ID and UID value for each user ID on the security domain worksheet, and the group name and GID value for each group on the security domain worksheet.
    • Set "Configure for local OS security registry" to "Y" if you intend to use RACF (or equivalent) as your WebSphere user registry; set it to "N" if you plan to use LDAP or a custom user registry instead.

    Security Domain Define Variables Panel (2 of 2)

    ------------  WebSphere Application Server for z/OS Customization     --------
    Option  ===>                                                                  
                                                                                  
    Security Domain Configuration (2 of 2)                                        
                                                                                  
       Specify the following to customize the security domain to be selected      
       when configuring one or more servers or cells, then press Enter            
       to continue.                                                               
                                                                                  
     SSL Customization                                                            
                                                                                  
       Certificate authority keylabel..........:  WebSphereCA                     
       Generate certificate authority (CA) certificate:  Y                        
       Expiration date for CA authority:  2010/12/31                              
       Default RACF keyring name.........:  WASKeyring                            
       Enable SSL on location service daemon:  N                                  
                                                                                  
     Additional z/OS Security Customization Options                               
       Generate default RACF realm name:  N                                       
          Default RACF realm name ....:  MCLXCF01                                 
                                                                                  
       Use SAF EJBROLE profiles to enforce J2EE roles:  N                         
                                                                                  
       Enable SAF authentication using LTPA or ICSF login tokens:  Y              
                                                                                  
     WebSphere Application Server user ID home directory:                         
         /var/WebSphere/home                                                      
                                                                                  
            
    Note: The WebSphere Application Server user ID home directory field was added to the Customization Dialog in WebSphere Application Server for z/OS Version 6.0.2.1.



In this information ...


IBM Redbooks, demos, education, and more

(Index)

Use IBM Suggests to retrieve related content from ibm.com and beyond, identified for your convenience.

This feature requires Internet access.

Task topic    

Terms of Use | Feedback

Last updated: Aug 29, 2010 9:31:45 PM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=vela&product=was-nd-mp&topic=tins_dialogsteps_setvars1
File name: tins_dialogsteps_setvars1.html