Protected object. ACL POP | IBM 5.1 manual

.

(protected object) POP(Protect Object Policy)

(protected object). ACL POP

. POP(Protect Object Policy)

(protected object space)

(replica). .

.

(blade).

(business entitlement).

(user registry). (registry)

(user). , , , , ,

, , , , ,

(service). .

( , HTTP Server, ), (:

) .

(attribute list).

. =

.

(schema).

, .

, ,

.

(trusted root). SSL(Secure Sockets Layer)

CA(Certificate Authority)

(encryption).

(cipher). ( )

(access permission).

(access control).

.

(role assignment).

,

(role activation).

(connection). (1)

. (2) TCP/IP

. TCP

TCP .

(3)

(external authorization service). Tivoli Access Manager

API

. ADK

.

(response file).

,

(certificate).

ID

. CA(Certificate Authority) .

(authentication). (1) ID

. (2)

. (3)

77

Image 95

IBM 5.1 manual Protected object. ACL POP

Contents

BEA WebLogic Server Page BEA WebLogic Server 2003 BEA Iii WebLogic Page Page Policy Server Business Policy Tivoli Access Manager WebSEAL Provisioning Fast Start API Tivoli Access Manager API C GSKit Tivoli Software Glossary Tivoli DB2 Tivoli Access Manager SSL Xiii WebSphere MQSeriesJMS Agent IBM . IBM Tivoli Identity Manager Tivoli Information CenterUnix policy Tivoli Identity IBM Software Support Guide Product manuals . Tivoli Software Information Center Java Unix . Windows $variable %variable% \ . Windows bash Tivoli Access Manager Policy Tivoli Access Manager BEA WebLogic Server Tivoli Access Manager WebLogicPolicy IBM Tivoli Access Manager Third-party Jaas Jaas Tivoli Access Manager Security Service Provider InterfaceWebLogic Management BeanMBean MBean WebLogic . WebLogic WebLogicPDPermission WebLogic . WebLogic Policy BEA WebLogic Server Policy WebLogic J2EE Policy WebSEAL Tivoli Access Manager WebSEAL ssouser WebSEAL , , RSA SecureIDWebSEAL URL , WebSEAL WebLogic Ssouser 23 JLog BEA WebLogic Server WebLogic BEA WebLogic Server Tivoli Access Manager Authorization Server IBM Tivoli Access Manager for e-business BEA WebLogic Server Copyright IBM Corp Authorization Server Tivoli Access Manager Policy ServerTivoli Access Manager Authorization Server 64MB RAM Tivoli Access Manager BEA WebLogic Server startWebLogic BEA WebLogic Server Tivoli Access Manager Java Windows 32 5 BEA WebLogic Server InstallamwlsInstallamwls Amwlsinstalldir/lib AIX Root Tivoli Access ManagerAIX AIX HP-UX Solaris Windows HP-UX Root Tivoli Access Manager Pfsmountd pfsd Pfsmount CD Solaris Swinstall Windows InstallShield 23Administrator Windows Tivoli Access Manager InstallShield \amwlsinstalldir\lib IBM Tivoli Access Manager for e-business BEA WebLogic Server WebLogic . Java Runtime Tivoli Access Manager Java Runtime Environment Solaris, HP-UX Sun v1.4d JRE , pdjrtecfg Pdconfig JREJDK Pdjrtecfg StartWebLogic BEA WebLogic Server StartWebLogic ClasspathStartWebLogic WebLogic . startWebLogic Java Classpath WebLogic StartWebLogic Classpath BEA WebLogic BEA WebLogic Tivoli Access Manager for WebLogic53 a AMWLSConsoleExtensions BEA WebLogic Server Config AMSSPIConfigure Tivoli Access Manager for WebLogic WebLogic URL Console Extension Web Application Tivoli Access Manager Rbpf.properties 53 a Access ManagerAMSSPIConfigure Createrealm SSO Tivoli Access Manager WebSEAL WebSEAL IBM Tivoli Access ManagerSsopwd WebSEAL Pdadmin WebSEAL BEA WebLogic Server Junction URL Tivoli Access Manager Plug-in for Web ServersPdadmin Plug-ininstalldir/etc pdwebpi.conf Ssouser BEA WebLogic Server Tivoli Access Manager for WebLogicBA add-hdr supply-password BA Page IBM Tivoli Access Manager for e-business BEA WebLogic Server Dummy Tivoli Access Manager WebSEAL Ws-passwd WebSEAL WebSEAL ID user-1 44 3 policy Tivoli Access Manager Authorization ServerTivoli Access Manager True Aznapi-entitlement-servicesBEA WebLogic Server Access Manager Path Web.xml Servlet ServletRole WebSEAL EJB GetBalance Banker1 Banker1 EAR AMWLSinstalldir/demo BEA WebLogic ServerDoPost ServletRole Ejb-jar.xml GetBalance EJBRole BankMembersServlet Servlet BankMembersEJB WebSEAL URL Banker Policy Ldap Web Portal Manager Ldap . , Ldap WebLogic Tivoli Access ManagerPolicy Policy pdadmin policy Policy 63 B Pdadmin Ldap Servlet AMWLSConfigure Amsspidir WebLogic BEA WebLogic Server BEA Active Directory administratorsWebLogic WebLogic Server Certificate.war Administrator WebLogic Active Directory Administrator Root Tivoli Access Manager IBM Tivoli AccessSolaris Solaris Windows AIX HP-UX AIX Access Manager for WebLogic Application ServerTivoli Access Manager IBM Tivoli Access Manager Windows Swremove HP-UX IBM Tivoli Access Manager for e-business BEA WebLogic Server BEA WebLogic Server Sspi Config createrealm .in ACL Tivoli Access ManagerAmsspi.properties Wlsrealmname BEA WebLogic Server Com.tivoli.amwls.sspi.config.AdminGroupProp Com.tivoli.amwls.sspi.config.DeployerGroupPropCom.tivoli.amwls.sspi.config.MonitorGroupProp Com.tivoli.amwls.sspi.config.OperatorGroupProp Rbpf.properties Com.tivoli.pd.as.rbpf.AMActionGroup Com.tivoli.pd.as.cache.EnableDynamicRoleCachingCom.tivoli.pd.as.rbpf.PosRoot Com.tivoli.pd.as.rbpf.ProductId Com.tivoli.pd.as.cache.StaticRoleCache.Roles Com.tivoli.pd.as.cache.EnableStaticRoleCachingCom.tivoli.pd.as.cache.EnableObjectCaching Com.tivoli.pd.as.cache.StaticRoleCache Com.tivoli.pd.as.rbpf.CopyParentRole Com.tivoli.pd.as.rbpf.GrantUnprotectedAccessCom.tivoli.pd.as.cache.ObjectCache.MaxResources Com.tivoli.pd.as.rbpf.ExcludedRoles Com.tivoli.pd.as.rbpf.EntitlementsUser Com.tivoli.pd.as.rbpf.IgnorePasswordPolicyOnUserCreateCom.tivoli.pd.as.rbpf.PropagateChildRole Com.tivoli.pd.as.rbpf.UseEntitlements Amwlsjlog.properties IsLogging Amwlsjlog.properties True True false BaseGroup traceLogger baseGroup messageLogger IBM Tivoli Access Manager for e-business BEA WebLogic Server Copyright IBM Corp AMWLSConfigure -action config True . false Remoteacluser remoteacluserSecmasterpwd secmasterpwd Verbose truefalse AMWLSConfigure -action unconfig False Ssopwd ssopwd AMWLSConfigure -action createrealmSsoenabled truefalse WLS IBM Tivoli Access Manager Error Message Reference Registryclean truefalse AMWLSConfigure -action deleterealm IBM Tivoli Access Manager for e-business BEA WebLogic Server IBM IBM IBM , IBM467-12 2DBCS IBM 467-12 IBM IBM , IBM Ipla Unix Open Group IBM Corporation IBM Tivoli Access Manager for e-business BEA WebLogic Server Virtual hosting Network-based authentication Protected object. ACL POP Entitlement service ACLAccess Control List PAC privilege attribute certificate service URLUniform Resource Locator IBM Tivoli Access Manager for e-business BEA WebLogic Server Page AIX Page SA30-2210-00