WebSphere Message Brokers
File: ap18220_
Writer: Stephanie J Strugnell

Concept topic

This build: July 31, 2007 21:35:04

Domain awareness

Enabling domain awareness means that access to the Message Brokers Toolkit is not restricted to users from one Windows domain.

The Configuration Manager is always domain aware; when the Configuration Manager receives user information, if the Configuration Manager is on Windows, it verifies the user's domain membership.

You can, however, configure whether the Message Brokers Toolkit sends domain aware information about the user to the Configuration Manager. If the user is logged on to a Windows domain and the Message Brokers Toolkit is configured to send domain aware information, the Message Brokers Toolkit sends the user's domain membership information as well as the user's ID. If the user is not logged on to a Windows domain, the Message Brokers Toolkit sends only the user's ID and their computer name.

With domain awareness enabled, users from different Windows domains who are either trusted by the primary domain, or in a Windows 2000 transitive trust relationship, can perform Message Brokers Toolkit tasks, provided that they are in the correct user role definition groups or object level security groups.

When using domain awareness:
Related concepts
Security overview
Related tasks
Considering security for a Configuration Manager
Considering security for the workbench
Related reference
Security requirements for administrative tasks
Notices | Trademarks | Downloads | Library | Support | Feedback

Copyright IBM Corporation 1999, 2007Copyright IBM Corporation 1999, 2007. All Rights Reserved.
This build: July 31, 2007 21:35:04

ap18220_ This topic's URL is: