Messaging security protects a service integration bus from unauthorized access. When administrative security is enabled for the application server, by default messaging security is also enabled for the bus. You can also manually administer messaging security for the bus.
Use the following tasks to administer messaging security:
Securing a service integration bus provides the bus with an authorization policy to prevent unauthorized users from gaining access. If a bus is configured to use multiple security domains, the bus also has a security domain and user realm to further enforce its authorization policy.
If you do not require messaging security, you can choose to disable messaging security. Any new buses added after messaging is disabled are not secured.
You can configure a service integration bus to allow connecting client JMS applications to authenticate by using Secure Sockets Layer (SSL) certificates.
How to update the authorization policy for the service integration bus with unique name entries.
Service integration messaging security uses role-based authorization. When a user is assigned to a role, the user is granted all of the permissions that the role contains. By administering authorization permissions, you can control user access to a bus and its resources when messaging security is enabled.
Use these tasks to configure a transport policy for a service integration bus, and to administer the transports chains that remote applications clients can use to connect to a service integration bus.
Use these tasks to administer the access control security associated with sending messages between buses.
You can secure the link between a local bus and a foreign bus.
For a mixed-version bus, when security is enabled, you must define an inter-engine authentication alias so that the messaging engines can establish trust.
Use this task to control which foreign buses are allowed to link to your bus.
You can protect the data store from access by unauthorized users.
Use the following tasks to secure mediations at an operations level. For example, a mediation inherits its identity from a the messaging engine, but you might want to specify an alternative identity for the mediation to use.
In this information ...Related concepts
Related reference
Related information
| IBM Redbooks, demos, education, and more(Index) |