IBM 5.1 manual Virtual hosting

Page 93

￿￿

￿

￿￿ ￿￿￿(virtual hosting). ￿￿￿￿ ￿ ￿￿￿ ￿￿￿￿ ￿

￿￿￿￿ ￿￿ ￿ ￿￿￿ ￿￿

￿￿￿ ￿(private key). ￿￿￿ ￿￿￿￿ ￿￿￿￿￿ ￿￿￿ ￿

￿￿ ￿. ￿￿ ￿￿ ￿￿

￿￿ ￿(public key). ￿￿￿ ￿￿￿￿ ￿￿ ￿￿￿ ￿￿￿ ￿

￿￿ ￿. ￿￿￿ ￿￿ ￿￿

￿￿ ￿￿￿(management domain). Tivoli Access Manager

￿ ￿￿, ￿￿ ￿￿ ￿ ￿￿￿ ￿￿￿ ￿￿ ￿￿ policy￿ ￿￿

￿￿ ￿￿ ￿￿￿. ￿ ￿￿￿￿ Policy Server￿ ￿￿￿ ￿ ￿

￿￿￿￿. ￿￿￿(domain) ￿￿

￿￿ ￿￿(management server). ￿ ￿￿ ￿￿￿￿ ￿￿￿￿.

Policy Server ￿￿

￿￿ ￿￿￿(administration service). Tivoli Access Manager

￿￿ ￿￿￿ ￿￿￿￿￿￿￿￿ ￿￿ ￿￿￿ ￿￿￿￿ ￿￿ ￿￿

￿ ￿ ￿￿ ￿￿ API ￿￿￿ ￿￿￿￿. ￿￿ ￿￿￿￿ ￿￿ ￿

￿￿￿ ￿￿ ￿￿ ￿￿ ￿￿ ￿￿￿ ￿￿￿￿￿ ￿￿￿￿ ￿￿

￿￿ ￿￿￿￿ ￿￿￿￿ ￿￿ pdadmin ￿￿￿ ￿￿ ￿￿ ￿￿

￿ ￿￿￿￿￿. ￿￿￿ ￿￿ ADK￿ ￿￿￿￿ ￿￿￿ ￿￿￿￿

￿￿￿ ￿ ￿￿￿￿.

￿￿￿￿(DN: distinguished name). ￿￿￿￿ ￿￿￿ ￿￿

￿ ￿￿￿￿ ￿￿ ￿￿. ￿￿ ￿￿￿ ￿￿:￿ ￿￿￿ ￿￿￿￿, ￿

￿￿￿￿￿￿￿.

￿￿(configuration). (1) ￿￿ ￿￿ ￿￿￿￿ ￿￿￿￿ ￿ ￿

￿￿￿￿￿ ￿￿￿￿ ￿￿ ￿￿￿￿ ￿￿. (2) ￿￿￿, ￿￿￿￿

￿ ￿￿ ￿￿￿￿￿ ￿￿￿￿ ￿￿￿, ￿￿￿￿ ￿ ￿￿￿￿

￿￿ ￿(authorization rule). ￿(rule) ￿￿

￿￿ ￿￿￿ ￿￿￿￿(authorization service plug-in). ￿￿ API

￿￿￿ ￿￿￿ ￿￿￿￿￿￿ ￿￿￿￿ ￿￿￿ ￿￿￿￿ ￿￿, ￿

￿￿ ￿ Tivoli Access Manager ￿￿ API ￿￿￿ ￿￿￿￿￿

￿￿ ￿￿￿ ￿ ￿￿ ￿￿￿￿ ￿￿ ￿￿￿ ￿￿￿￿￿(DLL ￿

￿ ￿￿ ￿￿￿￿￿). ￿￿ ￿￿ ￿￿￿ ￿￿￿ ￿￿￿￿￿￿￿

￿￿, ￿￿ ￿￿, ￿￿ ￿￿ ￿￿, ￿￿￿￿￿￿ ￿ PAC ￿￿ ￿

￿￿￿￿￿ ￿￿￿￿. ￿￿￿ ￿￿ ADK￿ ￿￿￿￿ ￿￿￿ ￿

￿￿￿ ￿￿￿ ￿ ￿￿￿￿.

￿￿ ￿￿ ￿￿ ￿￿￿(credentials modification service).

Tivoli Access Manager ￿￿ ￿￿￿ ￿￿￿￿ ￿￿ ￿￿￿ ￿

￿￿ ￿￿ API ￿￿￿ ￿￿￿￿. ￿￿￿ ￿￿￿￿ ￿￿￿ ￿￿

￿￿ ￿￿ ￿￿￿￿ ￿￿ ￿￿ ￿￿ ￿￿￿ ￿￿￿￿ ￿ ￿￿￿

￿ ￿￿￿￿ ￿￿￿ ￿￿￿￿￿ ￿￿￿￿, ￿￿ ￿￿￿ ￿￿￿ ￿

￿￿￿ ￿￿￿￿￿￿ ￿￿￿￿￿.

￿￿ ￿￿(credentials). ￿￿ ￿￿￿ ￿￿ ￿￿￿ ￿￿￿, ￿￿ ￿, ￿￿ ￿￿ ￿ ￿￿ ￿￿ ￿￿ ID ￿￿￿ ￿￿ ￿￿￿￿￿.

￿￿ ￿￿￿ ￿￿￿￿ ￿￿￿ ￿￿￿(￿: ￿￿, ￿￿ ￿ ￿￿)￿

￿￿￿ ￿ ￿￿￿￿.

￿￿(authorization). (1) ￿￿￿ ￿￿￿￿ ￿￿￿￿ ￿￿￿￿

￿ ￿￿￿￿ ￿￿￿ ￿ ￿￿￿ ￿￿￿￿￿ ￿￿￿￿ ￿￿. (2) ￿

￿￿￿, ￿￿ ￿￿ ￿￿￿ ￿￿ ￿￿￿￿￿ ￿￿￿ ￿￿￿￿ ￿

￿￿￿￿ ￿￿￿￿ ￿￿￿￿

￿￿(permission). ￿￿ ￿￿￿￿(￿: ￿￿ ￿￿ ￿￿￿￿)￿ ￿

￿￿￿ ￿ ￿￿ ￿￿. ￿￿￿￿￿ ￿￿￿￿ ￿￿ ￿￿ ￿￿￿

ACL(Access Control List)￿￿ ￿￿￿￿￿. ACL(Access Control

List) ￿￿

￿￿￿ ￿￿ ￿(GSO: Global Signon). ￿￿￿￿ ￿￿￿ ￿

￿￿ ￿￿￿ ￿￿￿ ￿ ￿￿￿￿￿￿ ￿￿￿ ￿￿￿ ￿ ￿￿￿

￿￿￿￿￿￿￿ ￿￿ ￿￿ ￿ ￿￿￿. ￿￿￿ ￿￿ ￿￿ ￿￿

￿￿￿￿ ￿￿ ￿￿￿￿ ￿￿￿ ￿￿￿ ￿￿ ￿￿￿ ￿￿￿ ￿

￿￿￿ ￿ ￿￿ ￿ ￿￿￿. ￿￿￿￿ ￿￿ ￿￿￿ ￿￿ ￿￿￿ ￿

￿￿￿￿ ￿ ￿￿￿￿￿￿￿￿ ￿￿￿ ￿ ￿￿￿ ￿￿￿￿￿￿

￿￿￿￿￿ ￿￿￿￿ GSO￿ ￿￿￿￿ ￿￿￿￿ ￿￿ ￿￿￿ ￿

￿￿ ￿￿￿ ￿￿￿￿ ￿￿￿ ￿￿￿. ￿￿ ￿￿ ￿(SSO: Single Signon) ￿￿

￿￿￿￿(basic authentication). ￿￿ ￿￿￿ ￿￿￿ ￿￿￿

￿￿ ￿￿ ￿￿￿ ￿￿￿￿￿ ￿￿, ￿￿￿￿ ￿￿￿ ￿￿￿ ￿

￿￿ ￿￿￿ ￿￿￿￿ ￿￿ ￿￿ ￿￿￿

© Copyright IBM Corp. 2003

75

Page 92 Page 94
Image 93
Page 92 Page 94
Contents BEA WebLogic Server Page BEA WebLogic Server 2003 BEA IiiWebLogic Page Page Policy Server Business PolicyTivoli Access Manager WebSEAL Provisioning Fast Start API Tivoli Access Manager API CGSKit Tivoli Software Glossary TivoliDB2 Tivoli Access Manager SSLWebSphere MQSeries JMSXiii Unix policy Tivoli Information CenterTivoli Identity Agent IBM . IBM Tivoli Identity ManagerIBM Software Support Guide Product manuals . Tivoli Software Information CenterJava Unix . Windows $variable %variable% \ . Windows bash Tivoli Access Manager Policy Tivoli Access ManagerPolicy IBM Tivoli Access Manager Tivoli Access Manager WebLogicThird-party BEA WebLogic ServerTivoli Access Manager Security Service Provider Interface WebLogic Management BeanMBeanJaas Jaas PDPermission WebLogicWebLogic . WebLogic Policy BEA WebLogic Server MBean WebLogic . WebLogicPolicy WebLogic J2EE PolicyWebSEAL Tivoli Access ManagerWebSEAL URL , WebSEAL WebLogic WebSEAL , , RSA SecureIDSsouser 23 WebSEAL ssouserJLog BEA WebLogic Server WebLogic BEA WebLogic ServerTivoli Access Manager Authorization Server IBM Tivoli Access Manager for e-business BEA WebLogic Server Copyright IBM Corp Tivoli Access Manager Authorization Server Tivoli Access Manager Policy Server64MB RAM Tivoli Access Manager Authorization ServerBEA WebLogic Server startWebLogic BEA WebLogic ServerTivoli Access Manager Java Windows Installamwls InstallamwlsAmwlsinstalldir/lib 32 5 BEA WebLogic ServerAIX Root Tivoli Access ManagerAIX HP-UX Solaris Windows AIXHP-UX Root Tivoli Access Manager Pfsmountd pfsd Pfsmount CDSolaris SwinstallAdministrator Windows Tivoli Access Manager InstallShield 23InstallShield Windows\amwlsinstalldir\lib IBM Tivoli Access Manager for e-business BEA WebLogic Server WebLogic . Java Runtime Tivoli Access Manager Java Runtime EnvironmentJDK Sun v1.4d JRE , pdjrtecfg Pdconfig JREPdjrtecfg Solaris, HP-UXStartWebLogic WebLogic . startWebLogic StartWebLogic ClasspathJava Classpath WebLogic StartWebLogic Classpath StartWebLogic BEA WebLogic ServerTivoli Access Manager for WebLogic 53 aBEA WebLogic BEA WebLogic AMWLSConsoleExtensions BEA WebLogic Server ConfigAMSSPIConfigure Tivoli Access Manager for WebLogicWebLogic URL Console Extension Web Application Tivoli Access ManagerAMSSPIConfigure Createrealm Access ManagerSSO Rbpf.properties 53 aTivoli Access Manager Ssopwd WebSEAL Pdadmin WebSEAL WebSEAL IBM Tivoli Access ManagerBEA WebLogic Server WebSEALPdadmin Tivoli Access Manager Plug-in for Web ServersPlug-ininstalldir/etc pdwebpi.conf Junction URLBEA WebLogic Server Tivoli Access Manager for WebLogic BA add-hdr supply-password BASsouser Page IBM Tivoli Access Manager for e-business BEA WebLogic Server Dummy Tivoli Access Manager WebSEALWs-passwd WebSEAL WebSEAL ID user-1Tivoli Access Manager Authorization Server Tivoli Access Manager44 3 policy BEA WebLogic Server Access Manager Aznapi-entitlement-servicesPath TrueWeb.xml Servlet ServletRole WebSEAL EJBDoPost ServletRole EAR AMWLSinstalldir/demo BEA WebLogic ServerEjb-jar.xml GetBalance EJBRole GetBalance Banker1 Banker1BankMembersServlet Servlet BankMembersEJB WebSEAL URL BankerPolicy Policy pdadmin policy WebLogic Tivoli Access ManagerPolicy Policy Ldap Web Portal Manager Ldap . , Ldap63 B Pdadmin LdapServlet AMWLSConfigure Amsspidir WebLogicWebLogic Active Directory administratorsWebLogic Server BEA WebLogic Server BEACertificate.war Administrator WebLogic Active Directory AdministratorSolaris Tivoli Access Manager IBM Tivoli AccessSolaris Windows AIX HP-UX RootTivoli Access Manager IBM Tivoli Access Manager Access Manager for WebLogic Application ServerWindows AIXSwremove HP-UXIBM Tivoli Access Manager for e-business BEA WebLogic Server Amsspi.properties Config createrealm .in ACL Tivoli Access ManagerWlsrealmname BEA WebLogic Server BEA WebLogic Server SspiCom.tivoli.amwls.sspi.config.MonitorGroupProp Com.tivoli.amwls.sspi.config.DeployerGroupPropCom.tivoli.amwls.sspi.config.OperatorGroupProp Com.tivoli.amwls.sspi.config.AdminGroupPropRbpf.properties Com.tivoli.pd.as.rbpf.PosRoot Com.tivoli.pd.as.cache.EnableDynamicRoleCachingCom.tivoli.pd.as.rbpf.ProductId Com.tivoli.pd.as.rbpf.AMActionGroupCom.tivoli.pd.as.cache.EnableObjectCaching Com.tivoli.pd.as.cache.EnableStaticRoleCachingCom.tivoli.pd.as.cache.StaticRoleCache Com.tivoli.pd.as.cache.StaticRoleCache.RolesCom.tivoli.pd.as.cache.ObjectCache.MaxResources Com.tivoli.pd.as.rbpf.GrantUnprotectedAccessCom.tivoli.pd.as.rbpf.ExcludedRoles Com.tivoli.pd.as.rbpf.CopyParentRoleCom.tivoli.pd.as.rbpf.PropagateChildRole Com.tivoli.pd.as.rbpf.IgnorePasswordPolicyOnUserCreateCom.tivoli.pd.as.rbpf.UseEntitlements Com.tivoli.pd.as.rbpf.EntitlementsUserAmwlsjlog.properties IsLogging Amwlsjlog.propertiesTrue True false BaseGroup traceLogger baseGroup messageLoggerIBM Tivoli Access Manager for e-business BEA WebLogic Server Copyright IBM Corp AMWLSConfigure -action config Secmasterpwd secmasterpwd Remoteacluser remoteacluserVerbose truefalse True . falseAMWLSConfigure -action unconfig Ssoenabled truefalse AMWLSConfigure -action createrealmWLS False Ssopwd ssopwdIBM Tivoli Access Manager Error Message Reference Registryclean truefalse AMWLSConfigure -action deleterealmIBM Tivoli Access Manager for e-business BEA WebLogic Server IBM IBM , IBM 467-12 2DBCS IBMIBM 467-12 IBM IBM , IBM Ipla Unix Open Group IBM CorporationIBM Tivoli Access Manager for e-business BEA WebLogic Server Virtual hosting Network-based authentication Protected object. ACL POP Entitlement service ACLAccess Control List PAC privilege attribute certificate service URLUniform Resource Locator IBM Tivoli Access Manager for e-business BEA WebLogic Server Page AIX Page SA30-2210-00
Top Page Image Contents