Performing this task helps you, as Web administrator, to
ensure that WebSphere Application Server is properly configured to
enable the operation of the Simple and Protected GSS-API Negotiation
(SPNEGO) trust association interceptor (TAI).
Before you begin
You need to know how to use the WebSphere Application Server
administrative console to manage the security configuration and have
the proper authority to modify the security configuration of the application
server.
About this task
Complete the following steps to enable the operation of the
SPNEGO TAI.
Procedure
- Log on to the WebSphere Application Server administrative
console.
- Click Security > Secure administration, applications,
and infrastructure.
- Expand Web security and click Trust association.
- Under the General Properties heading, select the Enable
trust association check box, then click Interceptors.
- Select the SPNEGO TAI in the list of interceptors.
- Then click Custom properties.
- Click New and then fill in the Name and Value fields.
Click OK. Repeat this step for each custom property that you
want to apply to the SPNEGO TAI. See SPNEGO TAI custom properties configuration for a
complete list of SPNEGO TAI custom properties.
- After you finish defining your custom properties, click Save to
store the updated SPNEGO TAI configuration.
- Optional: If an alias for a connecting host
name is added dynamically after the application server is started,
you need to configure the alias. Refer to the Using an alias host name for SPNEGO TAI authentication using the administrative console topic.
Results
Your SPNEGO TAI configuration is now configured for WebSphere
Application Server.