AuthMechanism


This type is a class for model objects.

Configuration for a type of security authentication mechanism. Authentication mechanisms are used to determine whether users are permitted to access applications.

Package: security

Known subtypes:
    LTPA
    RSAToken
    SWAMAuthentication
    KRB5
    SPNEGO
    CustomAuthMechanism

Classifier ID:  -1
Instance class name:  * Unspecified *
Instance class:  * Unspecified *

Reference attributes having this type:
  AuthenticationTarget.authMechanism
  Security.adminPreferredAuthMech
  SecurityCommon.activeAuthMechanism

Collection attributes having this type:
  DynamicReload.authMechanisms
  SecurityCommon.authMechanisms



Attributes Summary
OID : EString A GSS-unique identifier for a security mechanism. For example, "1.3.18.0.2.30.2" for ibm-LTPA
isCredentialForwardable : EBoolean Should set to true if an AuthMechanism generates a security token which can be validated.
authContextImplClass : EString Specifies the class that implements the WSSecurityContext interface which is invoked by CSIv2 security protocol when establishing a secure association.
authConfig : EString Specifies the class that implements the LoginModule interface that provides the authentication mechanism.
simpleAuthConfig : EString Specifies the class that implements the LoginModule interface that provides the authentication mechanism. This attribute may be removed in a future release.
authValidationConfig : EString Specifies the class that implements the LoginModule interface that provides the security token validation mechanism. This attribute may be removed in a future release.
trustAssociation : TrustAssociation @ Specifies the trust association configuration including a enable flag and a list of trust association interceptor implementations.
singleSignon : SingleSignon @ Specifies the single sign-on configuration including enable flag and a SSO domain name.
properties : Property * Contains a list of name-value pairs that may be used by the Security Server internal code.
digestAuthentication : DigestAuthentication @ * No description is available *



Attribute Details

OID  -  A GSS-unique identifier for a security mechanism. For example, "1.3.18.0.2.30.2" for ibm-LTPA
    Data Type: EString
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

isCredentialForwardable  -  Should set to true if an AuthMechanism generates a security token which can be validated.
    Data Type: EBoolean
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  true
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

authContextImplClass  -  Specifies the class that implements the WSSecurityContext interface which is invoked by CSIv2 security protocol when establishing a secure association.
    Data Type: EString
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

authConfig  -  Specifies the class that implements the LoginModule interface that provides the authentication mechanism.
    Data Type: EString
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

simpleAuthConfig  -  Specifies the class that implements the LoginModule interface that provides the authentication mechanism. This attribute may be removed in a future release.
    Data Type: EString
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

authValidationConfig  -  Specifies the class that implements the LoginModule interface that provides the security token validation mechanism. This attribute may be removed in a future release.
    Data Type: EString
    Default value:  unspecified
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

trustAssociation  -  Specifies the trust association configuration including a enable flag and a list of trust association interceptor implementations.
    Reference Type: TrustAssociation @
    Containment:  true
    Container:  false
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

singleSignon  -  Specifies the single sign-on configuration including enable flag and a SSO domain name.
    Reference Type: SingleSignon @
    Containment:  true
    Container:  false
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

properties  -  Contains a list of name-value pairs that may be used by the Security Server internal code.
    Reference Type: Property *
    Containment:  true
    Container:  false
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  true
    Ordered:  true
    Lower bound:  0
    Upper bound:  Unbounded
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

digestAuthentication  -  * No description is available *
    Reference Type: DigestAuthentication @
    Containment:  true
    Container:  false
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false



(C) COPYRIGHT International Business Machines Corp. 1996-2006