kn!!s#:.(virtual hosting). NM]!QLsG#:.N*
8*5OOB%-vGbI
3Nk0(private key). D;M8H!-R/Z8LgkRv
VB0.
xk0
Mk6
xk0(public key). C:[8H!-pggwLgkRv
VB0.
3Nk0
Mk6
|.5^N(management domain). Tivoli Access Manager
!Nu,GQN)WW<:&n&'X8Hpolicy&{k
OBb;5^N.L5^N: Policy Server!8:I'[
:KOY.
5^N
(domain) |6
|.-v(management server). uLsgkOvJ@OY.
Policy Server |6
|.-q:(administration service). Tivoli Access Manager
Zx|.ZnC.ILG!-|.d;;v`Ob'Xgk
RvVBGQAPI 18SC/WN.|.-q:B8#@
j'...;G/$keF!!@j'.&*-OBMz
0LB:)&v`Ob'Xpdadmin mI;kXx]d;
!@dUOY.m4:GQADK&gkO)L/Q-q:&
3_RvV@OY.
80L'(DN: distinguished name). p:d.;!-Wq
;D0OBm/L'.80L':
S:
:
*
V8N8:Gg,0
%N8PUOY.
8:(configuration). (1) $83.C:[GOe~nWR
A.~n!8:Gns#,aGBfD. (2) C:[,-jC:
[GBW.v)&8:OBC:[,pYL:WANW%
GQj(authorization rule).
j
(rule) |6
GQ-q:C/WN(authorization service plug-in). GQAPI
;!--q:NMdL:&.eOB[w;v`Ob'X,J
b-CTivoli Access Manager GQAPI 18S,sLp.
!-NeRvVB?{8NNe!IQsLj/.(DLL G
Bx/sLj/.). vggk!IQ-q:NMdL:!B
|.,\NGQ,GQ$8v$,N8L2U.WPAC 6[N
MdL:!V@OY.m4:GQADK&gkO)L/Q-
q:&3_RvV@OY.
GQ$8v$-q:(credentials modification service).
Tivoli Access Manager GQ$8&v$Ob'XgkRv
VBGQAPI 18SC/WN.m4L\N!-3_QGQ
$8v$-q:BGQ$8S: qO!_!OmLqO!
-&EOB6[; v`O5O&QGg,v$!IQM8N#
VGBS:i88N&QKOY.
GQ$8(credentials). Nu5_!r:Z<Q$8N,gk
Z,Wl,|Wb88H|CID S:!kX3mUOY.
GQ$8&gkO)YgQ-q:(9:GQ,(gW'S)&
v`R vV@OY.
GQ(authorization). (1) C:[8H!-C:[zkEOE
*C:[;gkRvV5OgkZ!TN)GBGQ. (2) @
j'.,ZxGBbI!kQO|OE*&QHW<:&g
kZ!TN)OBAN<:
GQ(permission). 8#@j'.(9:DOGBp:d.)!W
<:RvVBIB.@j'.!XgOBGQvMGLB
ACL(Access Control List)!-$GKOY.ACL(Access Control
List) |6
[NzgNB(GSO: Global Signon). gkZ!gkZL
'WO#&i#e%nC.ILG-v!&xRvV5O
OB6k:VBL[gNBVgG.[NzgNB:\O
NWN; kXgkZ!gkRGQLVBD;CZx! W
<:RvVTX]OY.Lb>GPjD;C/f;!-)
/C:[WnC.ILG8N8:H+TpG#MAsLn
!{UOT8inxGSO&gkOigkZB)/gkZL
'WO#&|.OvJF5KOY.
L[gNB
(SSO: Single
Signon) |6
b;Nu(basic authentication). 8HBsNZx! W<:
RvVBGQLN)Gb!U-,gkZ!CY%gkZL
'WO#&TBX_OBNu^Re
© Copyright IBM Corp. 2003 75