+

Search Tips   |   Advanced Search

Configure the UDDI registry to use WAS security

We can configure the UDDI registry to determine whether users are allowed access to services, and to determine security of data at the transport level.

The UDDI registry uses two aspects of WAS security:

Authorization

Authorization determines whether users are allowed access to services. WebSphere Application Server determines authorization by mapping users, or groups of users, to roles. UDDI uses two WebSphere Application Server special subjects: Everyone (all users are allowed access) and AllAuthenticatedUsers (only valid WebSphere Application Server registered users are allowed access).

Data confidentiality

Data confidentiality determines security at the transport level. Data confidentiality for WebSphere Application Server services can be either none, where HTTP is used as the transport protocol, or confidential, where the use of SSL is required and HTTPS is used as the transport protocol.

When WAS security is enabled, the default settings in the UDDI Version 3 Application and web deployment descriptors produce the following results:

We can use the default settings, as described previously. To change the defaults, you map roles to different users or user groups. If we do this, enable the Automatically register UDDI publishers property of the UDDI node settings so that we do not have to use two mechanisms to give access to a subset of users. If we have a role that is not mapped to any users or user groups, all access to that role is disabled.

For more information about UDDI role mappings, and a list of UDDI registry services and roles, see the topic about access control for UDDI registry interfaces.

To change the default settings, use the following steps:


Next topic: UDDI registry security and UDDI registry settings


Related concepts

  • Access control for UDDI registry interfaces


    Related tasks

  • Enable security
  • Configure UDDI security with WAS security enabled
  • Configure UDDI Security with WAS security disabled
  • Configure SOAP API and GUI services for the UDDI registry

  • Options for the AdminApp object install, installInteractive, edit, editInteractive, update, and updateInteractive commands
  • UDDI node settings
  • SSL configurations for selected scopes