IBM Integration Bus, Version 10.0.0.2 Operating Systems: AIX, HP-Itanium, Linux, Solaris, Windows, z/OS


SecurityProfiles configurable service

Select the objects and properties that you want to change for the SecurityProfiles configurable service.

To change these properties, you must specify the integration node name and -c SecurityProfiles. You must also set the ObjectName to either Default_Propagation or the name of a SecurityProfiles configurable service that you have defined by using the mqsicreateconfigurableservice command. The properties and values are the same for all services.

For SecurityProfiles configurable services, you must stop and start the integration server for a change of property value to take effect.

Supplied configurable services that are created for each integration node Properties for each configurable service that is defined Description of properties

Default_Propagation

authentication

The type of authentication that is performed on the source identity. Valid values are:
  • NONE
  • LDAP
  • TFIM
  • WS-Trust V1.3 STS
  • A user-defined value

If you are using TFIM V6.1, specify TFIM. If you are using TFIM V6.2, specify WS-Trust V1.3 STS.

authenticationConfig

The information that the integration node needs to connect to the provider, specific to the provider. It is a provider-specific configuration string.

authorization

The types of authorization checks that are performed on the mapped or source identity. Valid values are:
  • NONE
  • LDAP
  • TFIM
  • WS-Trust V1.3 STS
  • A user-defined value

If you are using TFIM V6.1, specify TFIM. If you are using TFIM V6.2, specify WS-Trust V1.3 STS.

authorizationConfig

How the integration node connects to the provider, specific to the provider. It is a provider-specific configuration string.

mapping

The type of mapping that is performed. Valid values are:
  • NONE
  • TFIM
  • WS-Trust V1.3 STS
  • A user-defined value

If you are using TFIM V6.1, specify TFIM. If you are using TFIM V6.2, specify WS-Trust V1.3 STS.

mappingConfig

How the integration node connects to the provider, specific to the provider. It is a provider-specific configuration string.

passwordValue

How passwords are treated when they enter a message flow. Valid values are:
  • PLAIN
  • MASK
  • OBFUSCATE

propagation

Indicates whether identity propagation is performed on output and request nodes. Valid values are:
  • TRUE
  • FALSE
 

rejectBlankpassword

Indicates whether the security manager rejects authentication of a username that has an empty password token, without passing it to LDAP. Valid values are:
  • TRUE
  • FALSE
Default is FALSE.

This configurable service is independent of the securitycache component.

-n authentication
The type of authentication that is performed on the source identity.
  • Value type - enum
  • Initial value - NONE
  • Other valid values:
    • LDAP
    • TFIM
    • WS-Trust V1.3 STS
    • A user-defined value

    TFIM applies to TFIM V6.1 only. If you are using TFIM V6.2, specify WS-Trust V1.3 STS.

-n authenticationConfig
The information that the integration node needs to connect to the provider, specific to the provider.
  • Value type - string
  • Initial value - None
-n authorization
The types of authorization checks that are performed on the mapped or source identity.
  • Value type - enum
  • Initial value - NONE
  • Other valid values:
    • LDAP
    • TFIM
    • WS-Trust V1.3 STS
    • A user-defined value

TFIM applies to TFIM V6.1 only. If you are using TFIM V6.2, specify WS-Trust V1.3 STS.

-n authorizationConfig
How the integration node connects to the provider, specific to the provider.
  • Value type - string
  • Initial value - None
-n mapping
The type of mapping that is performed.
  • Value type - enum
  • Initial value - NONE
  • Other valid values:
    • TFIM
    • WS-Trust V1.3 STS
    • A user-defined value

    TFIM applies to TFIM V6.1 only. If you are using TFIM V6.2, specify WS-Trust V1.3 STS.

-n mappingConfig
How the integration node connects to the provider, specific to the provider.
  • Value type - string
  • Initial value - None
-n passwordValue
How passwords are treated when they enter a message flow.
  • Value type - enum
  • Initial value - PLAIN
  • Other valid values:
    • MASK
    • OBFUSCATE
-n propagation
Indicates whether identity propagation is performed on output and request nodes.
  • Value type - Boolean
  • Initial value - TRUE
-n rejectBlankpassword
Indicates whether the security manager rejects a username that has an empty password token, without passing it to LDAP.
  • Value type - Boolean
  • Initial value - FALSE

an09144_.htm | Last updated 2015-09-24 12:53:01