+

Search Tips   |   Advanced Search

 

Integrating third-party HTTP reverse proxy servers

 

These steps are required to use either a WebSEAL trust association interceptor or your own trust association interceptor with a reverse proxy security server.

 

Overview

WAS enables you to use multiple trust association interceptors. The Application Server uses the first interceptor that can handle the request.

 

Procedure

  1. Access the console.

    Type http://fully_qualified_host_name:port_number/ibm/console in a Web browser.

    Port 9060 is the default port number for accessing the console. During installation, however, you might have specified a different port number. Use the appropriate port number.

  2. Click Security > Secure administration, applications, and infrastructure.

  3. Under Web security, click Trust association.

  4. Select the Enable trust association option.

  5. Under Additional properties, click Interceptors. The default value appears.

  6. Verify that the appropriate trust association interceptors are listed. If use a WebSEAL trust association interceptor, see Configure single sign-on using the trust association interceptor or Configuring single sign-on using trust association interceptor ++. If you are not using WebSEAL and need to use a different interceptor...

    1. Select both the com.ibm.ws.security.web.WebSealTrustAssociationInterceptor and the com.ibm.ws.security.web.TAMTrustAssociationInterceptorPlus class name and click Delete.

    2. Click New and specify a trust association interceptor.

 

Results

Enables trust association.

 

What to do next

  1. If you are enabling security, make sure that you complete the remaining steps for enabling security.

  2. Save, stop and restart all of the product servers (deployment managers, nodes and Application Servers) for the changes to take effect.


Trust association settings

Trust association interceptor collection

Trust association interceptor settings

 

Related concepts


Web component security
Trust associations

 

Related tasks


Enabling security
Configure single sign-on using the trust association interceptor
Configure single sign-on using trust association interceptor ++
Authenticating users