IBM 5.1 g, F

BG&C:[ZxG!s@j'.%C.

8#@j'.

(protected object) WPOP(Protect Object Policy) |6

8#@j'.(protected object). ACL WPOP&{kOb'

XgkOggkZW<:GQN)! gkOBG&C:[

ZxGm.%C.POP(Protect Object Policy) W

8#@j

'.x#

(protected object space) |6

9&;(replica). Y%-vGp:d.g;;wTOB-v.

9&;::IGB@dC#;bsC0m%LM+a:;8

eOb'X-v&iwUOY.

m9Le(blade). nC.ILG/$-q:W8:dR&&

xOB8:dR

qnO:N8L2U.(business entitlement). Zx! |QG

Qd;!-gkRvVBZ<Q6G;3mOBgkZG

Q$8G8fS:

g

gkZ9v:..(user registry).

9v:..

(registry) |6

gkZ(user). Y%3N,6w,AN<:,pYL:,ANW%,

ANd]GBC:[!-&xOB-q:&gkOBpg3

N,6w,AN<:,pYL:,ANW%,ANd]GBC:[

-q:(service). -v!-v`GB[w.-q:B%LM&8

;E*zeOb'Q\xQd;LE*(DO-v, HTTP

Server, |Z lm-vWNE-v!-), u9bQ[w(9:

Nb-vGBAN<:-vG-q:)OvV@OY.

S: qO(attribute list). GQ;a$Ob'XgkOB.

e$8&wTOB5)HqO.S: qO:

L'

=

*

V8

N8:KOY.

:06(schema). %LM#L:86&O|OT3mOBmI

.<.N,%LM$GpnN%vKOY.|h|%LM#L:

!-:06BWLm,"WLmGJe,JeMWLm#G|

h&$GUOY.

EZ:VBg.(trusted root). SSL(Secure Sockets Layer)

!-CA(Certificate Authority)Gxk0W,|H80L

'

F

O#-(encryption). C:[8H!-x!%LM&O#X

6AN<:8;gkO)<vV5O-XQ |BN//O

BAN<:

O#(cipher). 0&gkO)8k%LMN//(O#X6)G

b|!BP; vx5OO#-H%LM

W<:GQ(access permission). |<@j'.!{kOBW

<:GQ

W<:&n(access control). C:[8H!-GQLVBg

kZ8LGQLN)HfD8NC:[Zx! W<:RvV

5O8eOBAN<:.

*Rv$(role assignment). gkZ!Xg*R!$GH@

j'.!|X{}QW<:GQ;.BM33,gkZ!T*

R;v$OBAN<:

*R0:-(role activation). *R!W<:GQ;{kOB

AN<:

,a(connection). (1) %LMkE!-$8|^;'QbI

e!gL!3$GB,|. (2) TCP/IP!-EZRvVB%

LM:.2|^-q:&&xOBN3GANd]nC.

ILGgLG fN.NM]!-,a:QC:[GTCP nC

.ILG!-Y%C:[GTCP nC.ILG8N.eUOY.

(3) C:[kE!-NC:[gLGBC:[zpYL:g

L!%LM&|^RvVB81

\NGQ-q:(external authorization service). Tivoli

Access Manager GQa$<NG ONNnC.ILGGB/

f/$GQa$;'XgkRvVBGQAPI 18SC

/WN.m4:GQADK&gkO)L/Q-q:&3_R

vV@OY.

@dDO(response file). ANW%!-d;OBz.!BB

g|$GH@d<.&wTOg,Qx!O*?*;TBO

BkEgkGBDO

Nu-(certificate). C:[8H!-xk0&Nu-R/Z

GID!YNeO)Nu-R/Z&NuRvV5OOBp

vP.-.Nu-BCA(Certificate Authority)!-_^UOY.

Nu(authentication). (1) C:[8H!-gkZID GBg

kZG @j'.W<:GQ;.NOBM. (2) C:[8H!

-^Cv!/fGBUsGvJRBv.NOBM. (3) C

:[8H!-$8C:[GB8#ZxGgkZ&.NO

kn77

Contents

Main Page Page Page qw iv Page Page -. |.-v gkZH;- L%GgkZ L%G;k |C-{ 1.:$8 b;$8 %8H$8 kUH;- b;3! H;- kU H;- 3_Z|6- bz8f3m- |C-{ IBM Global Security Kit IBM Tivoli Directory Server IBM DB2 Universal Database IBM WebSphere Application Server IBM Tivoli Access Manager for Business Integration |.H;- .&! G0H;- IBM Tivoli Access Manager for WebSphere Business Integration Broker 3! Ob|! IBM Tivoli Access Manager for Operating Systems |.H;- 3!H;- .&! G0H;- IBM Tivoli Identity Manager /vW<:bI RA.~nvx.G L%!gkHT" [Z<T" boSC n5<&!{%/vWfN &1eR3W3d Tivoli Access Manager 8Hp( ck EN Tivoli Access Manager WWebLogic -vkU Tivoli Access Manager Security Service Provider Interface 8:d R Nu&xZ GQ&xZ *RJN&xZ Policy W*Rh! ZxW*R Tivoli Access Manager Nugk WebSEAL;gkO)\NgkZNu ;NgkZNu ;N NkW(g /: EZ:,!k:,)b6$ !I: Page Page &2e3!vCgW vxGBC'{ p:)W^p. d8gW g|3!RA.~n Tivoli Access Manager Policy Server Tivoli Access Manager Authorization Server Tivoli Access Manager WebSEAL GBTivoli Access Manager Plug-in for Web Servers BEA WebLogic Server AIXGIBM Java Runtime Environment Tivoli Access Manager Java 18S 3!6}g&gkO)3! |! Page install_amwls IG xC/?.<&gkO)3! AIX!3! HP-UX!3! Solaris!3! %8H k Windows!3! Page Page &3e8:}w &1N: Tivoli Access Manager Java Runtime Environment 8: Page b;3 !H;- &2N: startWebLogic!kQCLASSPATH 3$ &3N: Tivoli Access Manager for WebLogic 8: Console Extension Web Application;gkO)Tivoli Access Manager for WebLogic 8: %nC.IL G h! %nC.ILG mI`!-Tivoli Access Manager for WebLogic 8: &4N: Tivoli Access Manager |'8: Console Extension Web Application;gkO)Tivoli Access Manager |'8: {k b;|' O] mI`!-Tivoli Access Manager |'8: 8H b;|' {k O] gkZ &5N: BEA WebLogic Server L[gNB8: WebSEAL $G;gkO)L[gNB8: QmI`!,SX- Tivoli Access Manager Plug-in for Web Servers&gkO)L[g NB8: &6N:,/:MH/f;wTO)BEA WebLogic Server Y_-v/f !-Tivoli Access Manager for WebLogic 8: &7N:8:W:. Page Page &4eL[gNBgk!I Tivoli Access Manager WebSEAL;gkQL[gNB EZ:L VBv Page &5e|.B:) Tivoli Access Manager Authorization Server!-N8L2U.-q:g k Tivoli Access Manager for WebLogic!-gkZWWl|. |' gkZ|. Wl|. PO %pnC.ILGgk Page gkA 38C5NWBpolicy Tivoli Access Manager |'h& |'8: |'[: |'8:h& Tivoli Access Manager for WebLogic 8:X& 8: 8:X& .&! XaA gDb]NWN; gkOBL[gNBGP &QgW KAx.&! W.&Xaf} &6e&EvCgW Solaris!-&E Windows!-&E AIX!-&E HP-UX!-&E Page NOA. /:DO|6 amsspi.properties Page rbpf.properties Vk Page Page Page amwlsjlog.properties Page Page Page AMWLSConfigure -action config Page AMWLSConfigure -action unconfig AMWLSConfigure -action create_realm Page AMWLSConfigure -action delete_realm Page NOC. VGgW Page s% Page kn ! xk0 L[gNB j * * Y 76 5^NL' [NzgNB g F Y_dRNu W.v)b]N u xk0 Z + 78 8 D O A \NGQ-q: b;Nu B J L 80 8#@j'.x# 8#@j'. W Page vN [!] [Y] [s] [6] [g] C hS 84 H I