Network Deployment (Distributed operating systems), v8.0 > Secure applications and their environment
Set up, enabling and migrating security
We must address several issues prior to authenticating users, authorizing access to resources, securing applications, and securing communications. These security issues include migration, interoperability, and installation.
After installing WAS, you can determine the proper level of security that is needed for the environment. By default, administrative security is enabled and provides the authentication of users using the WebSphere administration functions, the use of SSL, and the choice of user account repository.
We can also use the following permissions to enhance security:
- Use the getSSLConfig permission to give the application code the ability to call several of the JSSEHelper methods. For more information about these methods, see the description of the com.ibm.websphere.ssl.JSSEHelper API in the Programming interfaces section of the Information Center.
- Use the AdminPermission permission to give the application code the ability to call WAS administrative APIs. See the topic Setting Java 2 security permissions for an example of how to set this permission.
- Use the accessRuntimeClasses permission to give the application code the ability to load classes that are included with the product. If you are operating in an environment that normally restricts access to these classes, this permission enables the application code to bypass this restriction during class loading. See the topic Global security settings for a description of how to set this permission.
The following information is covered in this section:
Procedure
- Determine if any migration and interoperability issues might affect your installation. See Migration and coexistence – Security considerations.
- Prepare the environment before and after installing WAS. See Prepare for security at installation time.
- Enable security for all your application servers or for specific application servers in your realm.
See either Enable security or Configure multiple security domains.
What to do next
After installing WAS and securing the environment, authenticate users. See Authenticate users.
Related
Migration and coexistence – Security considerations
Prepare for security at installation time
Enable security
Secure specific application servers
Multiple security domains
Authenticate users
Configure multiple security domains
Set Java 2 security permissions
Related
Global security settings