AuthMechanism

Configuration for a type of security authentication mechanism. Authentication mechanisms are used to determine whether users are permitted to access applications.



Attributes Summary
OID : StringA GSS-unique identifier for a security mechanism.
isCredentialForwardable : booleanShould set to true if an AuthMechanism generates a security token which can be validated.
authContextImplClass : StringSpecifies the class that implements the WSSecurityContext interface which is invoked by CSIv2 security protocol when establishing a secure association.
authConfig : StringSpecifies the class that implements the LoginModule interface that provides the authentication mechanism.
simpleAuthConfig : StringSpecifies the class that implements the LoginModule interface that provides the authentication mechanism.
authValidationConfig : StringSpecifies the class that implements the LoginModule interface that provides the security token validation mechanism.
trustAssociation : TrustAssociationSpecifies the trust association configuration including a enable flag and a list of trust association interceptor implementations.
singleSignon : SingleSignonSpecifies the single sign-on configuration including enable flag and a SSO domain name.
properties : Property * Contains a list of name-value pairs that may be used by the Security Server internal code.

Attribute Details

OID    -    A GSS-unique identifier for a security mechanism. For example, "1.3.18.0.2.30.2" for ibm-LTPA
     data type:  String
     default Value:   unspecified



isCredentialForwardable    -    Should set to true if an AuthMechanism generates a security token which can be validated.
     data type: boolean
     default Value:   unspecified
     Allowed Values:  true   false  



authContextImplClass    -    Specifies the class that implements the WSSecurityContext interface which is invoked by CSIv2 security protocol when establishing a secure association.
     data type:  String
     default Value:   unspecified



authConfig    -    Specifies the class that implements the LoginModule interface that provides the authentication mechanism.
     data type:  String
     default Value:   unspecified



simpleAuthConfig    -    Specifies the class that implements the LoginModule interface that provides the authentication mechanism. This attribute may be removed in a future release.
     data type:  String
     default Value:   unspecified



authValidationConfig    -    Specifies the class that implements the LoginModule interface that provides the security token validation mechanism. This attribute may be removed in a future release.
     data type:  String
     default Value:   unspecified



trustAssociation    -    Specifies the trust association configuration including a enable flag and a list of trust association interceptor implementations.
     data type: TrustAssociation



singleSignon    -    Specifies the single sign-on configuration including enable flag and a SSO domain name.
     data type: SingleSignon



properties    -    Contains a list of name-value pairs that may be used by the Security Server internal code.
     data type: Property*


Copyright IBM Corp. 1997-2004