Messaging security protects a service integration bus from
unauthorized access. When administrative security is enabled for the
application server, by default messaging security is also enabled
for the bus. You can also manually administer messaging security for
the bus.
About this task
Providing administrative security is also enabled, messaging
security enforces a security policy that prevents unauthorized client
applications from connecting to the bus, and accessing bus resources.
There might be circumstances when you do not require messaging security,
for example on a development system. In this case, you can disable
messaging security.
You can customize the security configuration
for the bus by using the administrative console, or
wsadmin scripting
commands. The security configuration controls the following aspects
of bus security:
- Authorizing groups of users in the user registry to undertake
selected operations on bus destinations.
- The transport policies that maintain the integrity of messages
in transit on the bus.
- The use of global, and multiple custom security domains.
- The integrity of links between messaging engines, foreign buses
and databases.