IBM BPM, V8.0.1, All platforms > Securing IBM BPM and applications > Configure administrative and application security > Configure application security

Augmenting IBM BPM profiles with security

You can take steps to secure your environment when you augment the WebSphere Application Server for z/OS default profile with IBM BPM security profile data. Alternatively you can provide the same information on the administrative console after you augment the profile.

When you configure IBM BPM there are several response file properties representing components, where you can enter user names and passwords for security purposes. The components of IBM BPM that permit you to enter these user names and passwords are the SCA, Business Process Choreographer, and the Common Event Infrastructure (CEI).

These user names and passwords are used to create authentication aliases and are required when you enable security. If you do not enter the user names and passwords when you configure IBM BPM, you can provide the same information using the administrative console, after you have configured the IBM BPM.

You must hold the edited response files in a secure location because the user names and passwords are stored in plain text.


Procedure

  1. In the Service Component Architecture portion of the response file, provide an identity to be used to connect components to the Service Integration Bus in a secured mode.
    1. Ensure the Service Component Architecture property value is set to true:configureScaSecurity=true.

    2. Enter a valid user name and password as values in the appropriate property fields (scaSecurityUserid and scaSecurityPassword).

  2. On the Common Event Infrastructure portion of the response file, provide an identity to be used to authenticate with WebSphere Messaging queue manager.

    Enter a valid user name and password in the appropriate fields (ceiSampleJmsUser and ceiSampleJmsPwd).

  3. On the Business Process Choreographer portion of the response file, provide an identity for the sample Business Process Choreographer configuration to connect to the Service Integration Bus in a secured mode.

    Enter a valid values appropriate fields (bpcmqUser and bpcmqPwd ).

    Enter a valid user name and password in the bpcmqUser and bpcmqPwd fields.


What to do next

More information about managing authentication aliases is provided in subsequent topics.

Configure application security


Related tasks:
Modify authentication aliases