Configuring users and groups in the bus connector role
Use this task to add, remove, and list users and groups
with permission to connect to a local bus using the administrative
console.
Procedure
Open the administrative console, and click Service
Integration > Buses.
To get to the Security configuration panel you can:
In the content pane, click on the name of the bus for which
you want to configure the users and groups. When a new page appears,
click on Security under Additional
Properties.
In the content pane, next to the bus that you wish to configure
security for, clicking on Enabled or Disabled link
in the security column.
In the Security configuration panel, click on Users
and Groups in the bus connector Role under Additional
Properties.
A new panel appears and shows a list of users and groups
that are in the bus connector role. This panel allows the administrator
to add and remove users and groups from the bus connector role. By
default this list is empty for newly created buses.
Important: The bus does not accept negative roles. Removing
a user's access to the bus connector role will not work if that
user is in a group that has the bus connector role.
To add a user or group to the bus connector role click New.
On the Configuration pane to add
a user or group to the bus connector role, there are three users or
groups you can add:
Group name: Give a specified group the bus
connector role.
User name: Give a specified user the bus connector
role.
Server: The server identity. This represents
the identity of a WebSphere® Application
Server. Using the server
identity for a JMS message-driven bean (MDB) is not supported.
Everyone: All users connecting in. If this
is specified then users are able to connect without authenticating.
These users are treated as anonymous users.
AllAuthenticated: All users that have authenticated
to the bus. This results in the group AllAuthenticated being added
to the authorization model.
Note: No checks are made to ensure that the user or group exists
in the configured user registry. If the user or group is already in
the bus connector role the action is ignored and results in a warning.
Note: When
specifying the bus connector role, distinguished name (DN) must be
used as the group name. Using common name (CN) causes problems in
authorization. For more information on authorization problems refer
to Service integration bus security - troubleshooting tips
Use IBM Suggests to retrieve related content from ibm.com and beyond, identified for your convenience.
This feature requires Internet access.
Most of the following links will take you to information that is not part of the formal product documentation and is provided "as is." Some of these links go to non-IBM Web sites and are provided for your convenience only and do not in any manner serve as an endorsement by IBM of those Web sites, the material thereon, or the owner thereof.
Last updated: Aug 31, 2013 1:23:07 AM CDT http://www14.software.ibm.com/webapp/wsbroker/redirect?version=pix&product=was-nd-dist&topic=tjr0345_ File name: tjr0345_.html