Configuring WebSphere Application Server and enabling the SPNEGO TAI

Performing this task helps you, as Web administrator, to ensure that WebSphere Application Server is properly configured to enable the operation of the Simple and Protected GSS-API Negotiation (SPNEGO) trust association interceptor (TAI).

Before you begin

You need to know how to use the WebSphere Application Server administrative console to manage the security configuration and have the proper authority to modify the security configuration of the application server.

About this task

Complete the following steps to enable the operation of the SPNEGO TAI.

Procedure

  1. Log on to the WebSphere Application Server administrative console.
  2. Click Security > Secure administration, applications, and infrastructure.
  3. Expand Web security and click Trust association.
  4. Under the General Properties heading, select the Enable trust association check box, then click Interceptors.
  5. Select the SPNEGO TAI in the list of interceptors.
  6. Then click Custom properties.
  7. Click New and then fill in the Name and Value fields. Click OK. Repeat this step for each custom property that you want to apply to the SPNEGO TAI. See SPNEGO TAI custom properties configuration for a complete list of SPNEGO TAI custom properties.
    Note: It is recommended that you use the wsadmin utility to manage the SPNEGO TAI properties. You can add, modify, and delete SPNEGO TAI properties as well as display them using wsadmin. See Adding SPNEGO TAI properties using the wsadmin utility to add, Modifying SPNEGO TAI properties using the wsadmin utility to modify, and Deleting SPNEGO TAI properties using the wsadmin utility to delete SPNEGO TAI properties.
  8. After you finish defining your custom properties, click Save to store the updated SPNEGO TAI configuration.
  9. Optional: If an alias for a connecting host name is added dynamically after the application server is started, you need to configure the alias. Refer to the Using an alias host name for SPNEGO TAI authentication using the administrative console topic.

Results

Your SPNEGO TAI configuration is now configured for WebSphere Application Server.



In this information ...


Related reference

IBM Redbooks, demos, education, and more

(Index)

Use IBM Suggests to retrieve related content from ibm.com and beyond, identified for your convenience.

This feature requires Internet access.

Task topic Task topic    

Terms and conditions for information centers | Feedback

Last updatedLast updated: Aug 31, 2013 1:23:07 AM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=pix&product=was-nd-dist&topic=tsec_SPNEGO_config_tai
File name: tsec_SPNEGO_config_tai.html