Virtual hosting | IBM 5.1 specs

(virtual hosting).

(private key).

.

(public key).

.

(management domain). Tivoli Access Manager

, policy

. Policy Server

. (domain)

(management server). .

Policy Server

(administration service). Tivoli Access Manager

API .

pdadmin

. ADK

.

(DN: distinguished name).

. : ,

.

(configuration). (1)

. (2) ,

,

(authorization rule). (rule)

(authorization service plug-in). API

,

Tivoli Access Manager API

(DLL

).

, , , PAC

. ADK

.

(credentials modification service).

Tivoli Access Manager

API .

,

.

(credentials). , , ID .

(: , )

.

(authorization). (1)

. (2)

,

(permission). (: )

.

ACL(Access Control List) . ACL(Access Control

List)

(GSO: Global Signon).

.

.

GSO

. (SSO: Single Signon)

(basic authentication).

,

© Copyright IBM Corp. 2003

75

Image 93

IBM 5.1 manual Virtual hosting

Contents

BEA WebLogic Server Page BEA WebLogic Server 2003 BEA Iii WebLogic Page Page Policy Server Business Policy Tivoli Access Manager WebSEAL Provisioning Fast Start API Tivoli Access Manager API C GSKit Tivoli Software Glossary Tivoli DB2 Tivoli Access Manager SSL WebSphere MQSeries JMSXiii Unix policy Tivoli Information CenterTivoli Identity Agent IBM . IBM Tivoli Identity Manager IBM Software Support Guide Product manuals . Tivoli Software Information Center Java Unix . Windows $variable %variable% \ . Windows bash Tivoli Access Manager Policy Tivoli Access Manager Policy IBM Tivoli Access Manager Tivoli Access Manager WebLogicThird-party BEA WebLogic Server Tivoli Access Manager Security Service Provider Interface WebLogic Management BeanMBeanJaas Jaas PDPermission WebLogicWebLogic . WebLogic Policy BEA WebLogic Server MBean WebLogic . WebLogic Policy WebLogic J2EE Policy WebSEAL Tivoli Access Manager WebSEAL URL , WebSEAL WebLogic WebSEAL , , RSA SecureIDSsouser 23 WebSEAL ssouser JLog BEA WebLogic Server WebLogic BEA WebLogic Server Tivoli Access Manager Authorization Server IBM Tivoli Access Manager for e-business BEA WebLogic Server Copyright IBM Corp Tivoli Access Manager Authorization Server Tivoli Access Manager Policy Server64MB RAM Tivoli Access Manager Authorization Server BEA WebLogic Server startWebLogic BEA WebLogic Server Tivoli Access Manager Java Windows Installamwls InstallamwlsAmwlsinstalldir/lib 32 5 BEA WebLogic Server AIX Root Tivoli Access ManagerAIX HP-UX Solaris Windows AIX HP-UX Root Tivoli Access Manager Pfsmountd pfsd Pfsmount CD Solaris Swinstall Administrator Windows Tivoli Access Manager InstallShield 23InstallShield Windows \amwlsinstalldir\lib IBM Tivoli Access Manager for e-business BEA WebLogic Server WebLogic . Java Runtime Tivoli Access Manager Java Runtime Environment JDK Sun v1.4d JRE , pdjrtecfg Pdconfig JREPdjrtecfg Solaris, HP-UX StartWebLogic WebLogic . startWebLogic StartWebLogic ClasspathJava Classpath WebLogic StartWebLogic Classpath StartWebLogic BEA WebLogic Server Tivoli Access Manager for WebLogic 53 aBEA WebLogic BEA WebLogic AMWLSConsoleExtensions BEA WebLogic Server Config AMSSPIConfigure Tivoli Access Manager for WebLogic WebLogic URL Console Extension Web Application Tivoli Access Manager AMSSPIConfigure Createrealm Access ManagerSSO Rbpf.properties 53 a Tivoli Access Manager Ssopwd WebSEAL Pdadmin WebSEAL WebSEAL IBM Tivoli Access ManagerBEA WebLogic Server WebSEAL Pdadmin Tivoli Access Manager Plug-in for Web ServersPlug-ininstalldir/etc pdwebpi.conf Junction URL BEA WebLogic Server Tivoli Access Manager for WebLogic BA add-hdr supply-password BASsouser Page IBM Tivoli Access Manager for e-business BEA WebLogic Server Dummy Tivoli Access Manager WebSEAL Ws-passwd WebSEAL WebSEAL ID user-1 Tivoli Access Manager Authorization Server Tivoli Access Manager44 3 policy BEA WebLogic Server Access Manager Aznapi-entitlement-servicesPath True Web.xml Servlet ServletRole WebSEAL EJB DoPost ServletRole EAR AMWLSinstalldir/demo BEA WebLogic ServerEjb-jar.xml GetBalance EJBRole GetBalance Banker1 Banker1 BankMembersServlet Servlet BankMembersEJB WebSEAL URL Banker Policy Policy pdadmin policy WebLogic Tivoli Access ManagerPolicy Policy Ldap Web Portal Manager Ldap . , Ldap 63 B Pdadmin Ldap Servlet AMWLSConfigure Amsspidir WebLogic WebLogic Active Directory administratorsWebLogic Server BEA WebLogic Server BEA Certificate.war Administrator WebLogic Active Directory Administrator Solaris Tivoli Access Manager IBM Tivoli AccessSolaris Windows AIX HP-UX Root Tivoli Access Manager IBM Tivoli Access Manager Access Manager for WebLogic Application ServerWindows AIX Swremove HP-UX IBM Tivoli Access Manager for e-business BEA WebLogic Server Amsspi.properties Config createrealm .in ACL Tivoli Access ManagerWlsrealmname BEA WebLogic Server BEA WebLogic Server Sspi Com.tivoli.amwls.sspi.config.MonitorGroupProp Com.tivoli.amwls.sspi.config.DeployerGroupPropCom.tivoli.amwls.sspi.config.OperatorGroupProp Com.tivoli.amwls.sspi.config.AdminGroupProp Rbpf.properties Com.tivoli.pd.as.rbpf.PosRoot Com.tivoli.pd.as.cache.EnableDynamicRoleCachingCom.tivoli.pd.as.rbpf.ProductId Com.tivoli.pd.as.rbpf.AMActionGroup Com.tivoli.pd.as.cache.EnableObjectCaching Com.tivoli.pd.as.cache.EnableStaticRoleCachingCom.tivoli.pd.as.cache.StaticRoleCache Com.tivoli.pd.as.cache.StaticRoleCache.Roles Com.tivoli.pd.as.cache.ObjectCache.MaxResources Com.tivoli.pd.as.rbpf.GrantUnprotectedAccessCom.tivoli.pd.as.rbpf.ExcludedRoles Com.tivoli.pd.as.rbpf.CopyParentRole Com.tivoli.pd.as.rbpf.PropagateChildRole Com.tivoli.pd.as.rbpf.IgnorePasswordPolicyOnUserCreateCom.tivoli.pd.as.rbpf.UseEntitlements Com.tivoli.pd.as.rbpf.EntitlementsUser Amwlsjlog.properties IsLogging Amwlsjlog.properties True True false BaseGroup traceLogger baseGroup messageLogger IBM Tivoli Access Manager for e-business BEA WebLogic Server Copyright IBM Corp AMWLSConfigure -action config Secmasterpwd secmasterpwd Remoteacluser remoteacluserVerbose truefalse True . false AMWLSConfigure -action unconfig Ssoenabled truefalse AMWLSConfigure -action createrealmWLS False Ssopwd ssopwd IBM Tivoli Access Manager Error Message Reference Registryclean truefalse AMWLSConfigure -action deleterealm IBM Tivoli Access Manager for e-business BEA WebLogic Server IBM IBM , IBM 467-12 2DBCS IBMIBM 467-12 IBM IBM , IBM Ipla Unix Open Group IBM Corporation IBM Tivoli Access Manager for e-business BEA WebLogic Server Virtual hosting Network-based authentication Protected object. ACL POP Entitlement service ACLAccess Control List PAC privilege attribute certificate service URLUniform Resource Locator IBM Tivoli Access Manager for e-business BEA WebLogic Server Page AIX Page SA30-2210-00