The bus security panel allows you to enable or disable
bus security, and administer bus security features such as mediation
authentication alias and permitted transports.
Before you begin
You can either set administrative security to enabled, or
have both administrative and bus security policy enabled.
About this task
The Bus Security flag results in client authentication
being performed and authorization policy being enforced. This flag
is read-only if administrative security is disabled. You set the inter-engine
authentication alias to authenticate messaging engines and communication
between them. Setting mediations authentication alias allows the messaging
engine to access mediations when application security is enabled.
The bus security panel contains links to panels that allow the administration
of users and groups in the bus connectors role, and the administration
of permitted transports.
Procedure
- Open the administrative console, and click Service
Integration > Buses.
- In the content pane, click on the name of the bus for which
you want to configure the users and groups. When a new page appears,
click on Security under Additional
Properties.
- In the content pane, next to the bus that you wish to configure
security for, clicking on Enabled or Disabled link
in the security column also takes you to the bus security page.
- Modify the following attributes:
- Enable bus security
- Select this option to inherit the secure administration setting of the cell. Deselect this option if you always wish to disable bus security. Creating
a bus when administrative security is enabled results in a bus that
is secure, by default. If administrative security is disabled an insecure
bus is created.
- Inter-engine authentication alias
- The name of the authentication alias used to authorize communication between messaging engines on the bus. This
field can be left blank. If a value is specified, and bus security
is enabled, incoming connections from other messaging engines are
controlled to prevent unauthorized messaging engines from establishing
a connection.
- Permitted transports
- The permitted transports group of radio buttons are used to specify
which transports are used. There are three modes:
- The first allows the use of any messaging transport chain defined
to any bus member.
- The second allows the use of only messaging transport chains that
are protected by an SSL chain.
- The third only allows the transports in the specified list.
The Permitted transport link under Related
Items allows you to add and remove permitted transports.
- Mediations authentication alias
- The name of the authentication alias used to authorize the bus
to access mediations.