Configuring UDDI Security with WebSphere Application Server security enabled

You can configure the UDDI registry to use the UDDI Version 3 security API or the UDDI Version 1 and Version 2 publish security features. Because WebSphere® Application Server security is enabled, WebSphere Application Server data confidentiality management is independent of UDDI security.

Before you begin

WebSphere Application Server security must be enabled.

About this task

You can configure the UDDI registry to use the UDDI security features if this is a requirement. However, for production use, another option is to configure the UDDI Version 3 registry to use WebSphere Application Server security.

The UDDI Version 1 and Version 2 publish security features involve the use of authentication tokens.

To configure the UDDI registry to use the UDDI security features, you use the administrative console.

Procedure

  1. In the navigation pane of the administrative console, click Applications > Enterprise Applications .
  2. In the content pane, click the UDDI registry application.
  3. Under Detail Properties, click Security role to user/group mapping.
  4. Set the WebSphere Application Server security role mappings to Everyone for the following UDDI services:
    • Versions 1 and 2 SOAP publish service (SOAP_Publish _User)
    • Version 3 publish service (V3SOAP_Publish_User_Role)
    • Version 3 custody transfer service (V3SOAP_CustodyTransfer_User_Role)
    • Version 3 security service (V3SOAP_Security_User_Role)
    This change to the role mappings ensures that WebSphere Application Server security cannot override UDDI security.
  5. For the UDDI Version 3 Publish and Custody Transfer services, ensure that the UDDI Policy is set to require the use of authentication tokens. The use of authentication tokens is already required for Version 1 and Version 2 Publish services.
    1. Click UDDI > UDDI Nodes > uddi_node_name > [Policy Groups] API policies.
    2. Select Authorization for publish and Authorization for custody transfer .
    3. Optional: If you require authentication for UDDI Inquiry services, select Authorization for inquiry .
    4. Click OK.

Results

After the configuration is complete, WebSphere Application Server authenticates the credentials (user name and password) that are associated with the authentication token. No Security Role authentication restriction is imposed.

For details of WebSphere Application Server data confidentiality management, see Configuring the UDDI registry to use WebSphere Application Server security.




In this information ...


IBM Redbooks, demos, education, and more

(Index)

Use IBM Suggests to retrieve related content from ibm.com and beyond, identified for your convenience.

This feature requires Internet access.

Task topic Task topic    

Terms and conditions for information centers | Feedback

Last updatedLast updated: Aug 30, 2013 6:03:36 PM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=pix&product=was-base-iseries&topic=twsu_uddisecurity1
File name: twsu_uddisecurity1.html