Authentication, WS-Security UsernameToken | Nortel Networks AS 5300

30Using the Open Provisioning Interface

Authentication

The Provisioning Server authenticates each request to ensure that the request is received from a valid client application. The client application needs to provide a user identity (user name) and authentication information (password) in the HTTP/SOAP request.

The supported authentication mechanisms are HTTP Basic Authentication

– Onboard Authentication and WS-Security UsernameToken.

Navigation

•"HTTP Basic Authentication – Onboard Authentication" (page 30)

•"WS-Security UsernameToken" (page 30)

HTTP Basic Authentication – Onboard Authentication

The username and password of the user are configured in the HTTP Headers. The following figure shows a sample HTTP header/SOAP message with the required information.

Figure 7

Sample HTTP header/SOAP message

WS-Security UsernameToken

The user’s username and password are configured in the WS Security Headers. A sample WS-Security header/SOAP message with the required information is shown in the following figure.

Nortel AS 5300

Nortel Application Server 5300 Application Programming Interfaces Reference

NN42040-110 01.01 Standard

11 June 2008

Copyright © 2008 Nortel Networks

Image 30

Nortel Networks AS 5300 manual Http Basic Authentication Onboard Authentication, WS-Security UsernameToken

Contents

NN42040-110 Legal Notice Contents Starting the Bulk Provisioning Tool New in this release Other changes New in this release Audience IntroductionNavigation Related documents Introduction Application Programming Interface fundamentals Open Provisioning Interface fundamentals Why use the Bulk Provisioning Tool Bulk Provisioning Tool fundamentals Bulk Provisioning Tool requirements Following table lists the requirements to run the BPT Application Programming Interface fundamentals Using the Bulk Provisioning Tool Install and launch the BPTBPT main menu BPT main menu Quit Navigation BPT provisioning methodsBPT ﬁles and scripts Files BPT conventions and examples ScriptsMethod and ﬁle syntax conventions Angle brackets Optional syntaxBrackets GetSysRoles optional into file name Square brackets Bar Comma separated strings Fully qualified user nameSuccess indication on remove methods Unknown error messages Create and manage provisioning roles using the BPTDefine the new provisioning role Add the new provisioning role AddRole using file D\prov\addexample.txtGetRole using AddExample View the new provisioning role Delete the new provisioning role BPT Help option Help addRole BPT limitations BPT mapping to the Provisioning Client Batch processing Resource use Provisioning data visibility Using the Bulk Provisioning Tool Using the Open Provisioning Interface Security, authentication, and authorizationSecurity Authentication Http Basic Authentication Onboard AuthenticationWS-Security UsernameToken Special note for .NET authentication headers Authorization Domain-level authorization Provisioning-level authorization Generate stubs Third-party client developmentGet the Wsdl Wsdl Implement interface accessing stubs Access stubs from the third-party application Starting the Bulk Provisioning Tool Starting the Bulk Provisioning Tool Procedure Steps Downloading the Bulk Provisioning Tool to a workstationLaunching the BPT on a workstation Launching the BPT on a workstation Starting the Bulk Provisioning Tool Creating Open Provisioning Interface clients Prerequisites for creating OPI clientsCreating OPI clients Task flow for creating OPI clients Conﬁguring the class path Retrieving the error codesDownloading the Axis toolkit \axis-14\webapps\axis\WEB-INF\lib \opiclient Downloading the Wsdl ﬁleCompiling the client stubs Loadname/wsdl/opi \opi\service Writing a client to perform some speciﬁc OPI operations Example Writing a client Writing a client to perform some specific OPI operations Compiling the client class Accessing the OPI Java docs Procedure Steps AdminAuthentication subfolder in the OPI Java Docs folder Writing a client to perform some specific OPI operations Accessing the OPI Java docs Importing a CA Certiﬁcate into the BPT Tool prompts Trust this certificate? noKeytool -list -v -keystore opitruststore Importing a CA Certificate into the BPT Page Nortel AS