+

Search Tips   |   Advanced Search

UDDI registry security and UDDI registry settings

In addition to the configuration of UDDI registry security, other UDDI registry settings can affect the security of the UDDI registry.

Some UDDI property and policy settings can affect the security of a UDDI registry. Other UDDI settings are not specific to security, but can place restrictions on the successful completion of publish requests.


Security settings

UDDI registry interfaces are protected, as detailed in Access control for UDDI registry interfaces.

The UDDI registry supports the use of XML Digital Signatures to sign UDDI entities. See the topic about digital signatures and the UDDI registry.

Some UDDI property and policy settings can affect the security of a UDDI registry.

To review or change the following property settings, click UDDI > UDDI Nodes > uddi_node.

Key space requests require digital signature

Whether all tModel:keyGenerator requests for key space must be digitally signed. To understand key space, see the topic about UDDI registry Version 3 entity keys.

Use authInfo credentials if provided

The UDDI registry uses the UDDI Version 3 security features. This setting applies only when WAS security is disabled. See Configure UDDI Security with WAS security disabled.

Authentication token expiry period

Length of idle time (in minutes) allowed before an authentication token is no longer valid.

Default user name

Name to use for publish operations when WAS security is disabled and no authentication token data is supplied.

To review or change the following policy settings, click UDDI > UDDI Nodes > uddi_node > [Policy Groups] API policies.

Authorization for inquiry

Whether authorization that uses authentication tokens is required for inquiry API requests.

Authorization for publish

Whether authorization that uses authentication tokens is required for publish API requests.

Authorization for custody transfer

Whether authorization that uses authentication tokens is required for custody transfer API requests.

These policy settings apply when UDDI security features are used and WAS security is enabled. If the UDDI service is mapped to the AllAuthenticatedUsers security role, these settings are overridden. See Configure UDDI Security with WAS security enabled.


Additional settings

The publish-related actions that a registered UDDI publisher can undertake are defined by their entitlements, as described in UDDI registry user entitlements.

Some UDDI property and keying policy settings influence publish behavior. These settings are not specific to security, but you must consider them because they place restrictions on the successful completion of publish requests.

To review or change the following property settings, click UDDI > UDDI Nodes > uddi_node.

Automatically register UDDI publishers

The UDDI registry requires that publisher entitlements are set before allowing any publish requests. This option automatically registers users with default entitlements.

If we do not select this option, we can register users as UDDI publishers, and specify their entitlements, using the UDDI publisher settings.

Use tier limits

Specifies that publication tier limits are enforced.

If we select this option, one or more tiers must be configured using the UDDI Tier settings. Also, ensure that registered UDDI Publishers are assigned to a tier using the UDDI publisher settings.

To review or change the following property setting, click UDDI > UDDI Nodes > uddi_node > [Policy Groups] Keying policies.

Registry key generation

Specifies that publishers can request key space and, if successful, publish with publisher-assigned keys.


Subtopics


Related concepts

  • Access control for UDDI registry interfaces
  • Digital signatures and the UDDI registry
  • UDDI registry Version 3 entity keys


    Related tasks

  • Configure the UDDI registry to use WAS security
  • Configure UDDI security with WAS security enabled
  • Configure UDDI Security with WAS security disabled


    Related information:

  • UDDI node settings
  • UDDI node API policy settings
  • UDDI Publisher settings
  • Tier collection
  • UDDI Tier settings
  • UDDI keying policy settings