6.7 Resource authentication

Resource authentication

+
Search Tips | Advanced Search

Before implementing any security, review WAS V6.1 Security Handbook, SG24-6316.
The res-auth setting found in the Web and EJB deployment descriptors sets the party responsible for authentication and authorization...
res-auth=Application
res-auth=Container

These settings can be configured during application assembly using Rational Application Developer or the Application Server Toolkit. They can also be set or overridden during application installation.

Authentication type Set at assembly
Authorization type Set during installation
Resource authorization
Application managed:
res-auth=Application Per_Connection_Factory Per application
WebSphere managed:
res-auth=Container Container Container

Next

Authentication type	Set at assembly Authorization type	Set during installation Resource authorization
Application managed: res-auth=Application	Per_Connection_Factory	Per application
WebSphere managed: res-auth=Container	Container	Container