Secure > Enable WAS security > Enabling WebSphere global security


Enable security with a WebSphere file-based user registry only

You can enable WebSphere global security using only the WebSphere Application Server file based user registry.


Procedure

  1. Optional: If you have WebSphere Commerce Payments instances, complete this step:

    1. Open Configuration Manager.

    2. Click...

      WebSphere Commerce | node_name | Payments | Instance List | instance | Instance Properties | instance

    3. Clear the Password Required for startup check box.

    4. Click Apply.

    5. Close the Configuration Manager.

  2. In the WAS Administration Console, modify the global security settings:

    1. Log on as: a user with administrative authority.

    2. Start the WAS administration server.

    3. Launch the WAS Administration Console and click...

      Security | Global security | Available realm definitions | Federated repositories | Set as current | Configure

    4. Enter the server user identity by performing one of the following tasks:

      1. Select Automatically generated server identity, or

      2. Enter the administrator ID name. Enter an existing ID and password in the repository, see the following server ID constraints:

        Field Name Sample Values Notes
        Server user ID wcsuser The user ID with operating system administrative privileges that you logged in with. if the machine belongs to a domain, use the fully-qualified user id. for example:

        DomainXYZ\user_id

        Ensure that this account exists in the domain server and is a member of the Administrator's group.

        Server user password password This is the password belonging to the user with operating system administrative privileges that you logged in with.

      If you select Automatically generated server identity, it is not necessary to enter the server user ID and password.

      1. Click Apply and then Save.

      2. Navigate back to Global security.

        1. Select Enable administrative security.

        2. Optional: Select Enable application security.

        3. Clear Use Java 2 security to restrict application access to local resources.

        4. Click Apply and then Save.

      3. Complete the following steps if you have selected Enable application security:

        1. In the navigation pane, click Enterprise Applications and click the server name, for example WC_demo.

          1. Click Security role to user/group mapping.

          2. Select WCSecurity Role and click Look up users and locate the user whose role to map.

          3. Click OK and then Save.

        2. In the navigation pane, click Enterprise Applications and click the server name, for example WC_demo.

          1. Click User RunAs roles.

          2. Select WCSecurityRole and specify the user name and password.

          3. Click Apply.

          4. Click OK and then Save.

    5. Open the Configuration Manager.

      1. Select WebSphere Commerce > node_name > Commerce > Instance List > instance > Instance Properties > Security.

      2. Select the Enable Administrative Security check box.

      3. Enter the Server User ID and password that you use to login to the WAS Administrative Console.

      4. Complete the following steps if you have selected Enable application security:

        1. Select the Enable Application Security check box. Click Yes to any confirmation prompts that appear.

        2. Enter the User ID and Password for the user with the WCSecurityRole that you previously specified.

      5. Click Apply.

      6. Close the Configuration Manager.

    6. Restart the WCS instance.


+

Search Tips   |   Advanced Search