Interoperating with a C++ common object request broker architecture client

WebSphere Application Server supports security in the CORBA C++ client to access-protected enterprise beans. If configured, C++ CORBA clients can access protected enterprise bean methods using a client certificate to achieve mutual authentication on WebSphere Application Server applications.

About this task

Interoperability can be achieved between C++ CORBA clients and WebSphere Application Server using the Common Secure Interoperability Version 2 (CSIv2) or by using the z/OS Secure Authentication Services (z/SAS) protocols. CSIv2 should be used unless interoperability is required with a WebSphere Application Server Version 4. See Global security settings and Configuring Common Secure Interoperability Version 2 (CSIV2) and Security Authentication Service (SAS).

Security authentication from non-Java based C++ client to enterprise beans. WebSphere Application Server supports security in the CORBA C++ client to access-protected enterprise beans. If configured, C++ CORBA clients can access protected enterprise bean methods using a client certificate to achieve mutual authentication on WebSphere Application Server applications.

To support the C++ CORBA client in accessing protected enterprise beans, complete the following steps:
  • Create an environment file for the client, such as current.env. Set the variables presented in the following list in the file:
    C++ security setting Description
    client_protocol_password Specifies the password for the user ID.
    client_protocol_user Specifies the user ID to authenticate at the target server.
    security_sslKeyring Specifies the name of the RACF keyring for the client to use. The keyring must be defined under the user ID that is issuing the command to run the client.
  • Point to the environment file using the fully qualified path name through the WAS_CONFIG_FILE environment variable. For example, in the test.sh test shell script, export:
    /WebSphere/V6R0M0/DeploymentManager/profiles/default/config/cells
      /PLEX1Network/nodes/PLEX1Manager/servers/dmgr
    Some of the environment file terms are explained below:
    default
    profile name
    PLEX1Network
    cell name
    PLEX1Manager
    node name
    dmgr
    server name



In this information ...


IBM Redbooks, demos, education, and more

(Index)

Use IBM Suggests to retrieve related content from ibm.com and beyond, identified for your convenience.

This feature requires Internet access.

Task topic    

Terms of Use | Feedback

Last updated: Aug 29, 2010 8:25:23 PM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=vela&product=was-nd-zos&topic=tsecinteroperatec
File name: tsec_interoperatec.html