Common Secure Interoperability Version 2 and Secure Authentication Service client configuration

A secure Java client requires configuration properties to determine how to perform security with a server.

These configuration properties are typically put into a properties file somewhere on the client system and referenced by specifying the following system property on the command line of the Java client. For example, this property accepts any valid Web address.

[AIX HP-UX Linux Solaris Windows] [iSeries]

-Dcom.ibm.CORBA.ConfigURL=file:profile_root/properties/sas.client.props

[z/OS]

-Dcom.ibm.CORBA.ConfigURL=file:/WebSphere/V5R0M0/AppServer/sas.client.props

[iSeries] When you use thin or thick clients, com.ibm.CORBA.ConfigURL is automatically set to the following file:
profile_root/properties/sas.client.props

[AIX HP-UX Linux Solaris Windows] [iSeries] [z/OS] When this file is processed by the Object Request Broker (ORB), security can be enabled between the Java client and the target server.

[AIX HP-UX Linux Solaris Windows] [iSeries] If any syntax problems exist with the ConfigURL property and the sas.client.props file is not found, the Java client proceeds to connect insecurely. Errors display indicating the failure to read the ConfigURL property. Typically the problem is related to having two slashes after file, which is not valid.

[z/OS] If any problems exist with the client properties file or there is no match with the server security, the Java client examines the server security for non-Common Secure Interoperability Version 2 (CSIv2) security mechanisms that might be available. If no match is found with the old, non-CSIv2 security either, the Java client attempts a nonsecure connection.

[AIX HP-UX Linux Solaris Windows] [iSeries] [This information applies to Version 6.0.x and previous servers only that are federated in a Version 6.1 cell.] Use the following properties to configure the SAS and CSIv2 authentication protocols:
Important: SAS is supported only between Version 6.0.x and previous version servers that have been federated in a Version 6.1 cell.
[z/OS] Use the following property to configure the CSIv2 authentication protocols:



Subtopics
Authentication protocol settings for a client configuration
[z/OS] Common Secure Interoperability version 2 (CSIv2) authentication protocol client settings
[AIX HP-UX Linux Solaris Windows] [iSeries] Security Authentication Service authentication protocol client settings
Related tasks
Configuring Common Secure Interoperability Version 2 (CSIV2) and Security Authentication Service (SAS)
Reference topic Reference topic    

Terms and conditions for information centers | Feedback

Last updatedLast updated: Aug 31, 2013 1:23:07 AM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=pix&product=was-nd-dist&topic=rsec_csiv2client
File name: rsec_csiv2client.html