Tivoli Access Manager WebSEAL


Auth options

For reviews, see: Top User Provisioning Software

Before migrating


WebSEAL notes

IBM Tivoli Access Manager WebSEAL is a Web server that applies fine-grained security policy to the Tivoli Access Manager protected Web object space. Provides single sign-on solutions and authentication/authorization control.

ACL policies provide the authorization service with information to make a "yes" or "no" answer on a request to access a protected object and perform some operation on that object.

Protected object policies (POP) contain additional conditions on the request that are passed back to Tivoli Access Manager Base and the resource manager (such as WebSEAL) along with the "yes" ACL policy decision from the authorization service.

Web Portal Manager graphical tool to manage security policy. The pdadmin command line utility provides the same, and more, administration capabilities.

The authentication method results in a client identity. Client authentication is successful only if the user has an account defined in the Tivoli Access Manager user registry or is processed successfully by a Cross-domain Authentication Service (CDAS)

Program files...

Document root doc-root = /opt/pdweb/www/docs

Logs /var/pdweb/www/log/

Start and stop:

User registries:

ACL policies: /WebSEAL/<host>/<file>

Set up certificates

Configure authentication


See also


+

Search Tips   |   Advanced Search