Configure UDDI Security with WebSphere Application Server <a href="http://www.setgetweb.com/p/i5/portal/WAS60/Introduction_Security.html">security</a>
enabled
Configure UDDI Security with WebSphere Application Server security
enabled
When WebSphere Application Server security is enabled, to use the UDDI Version 1 and Version 2 publish security features (use of authentication tokens) or the UDDI Version 3 security API, use the administrative console
to complete the following steps:
In the navigation pane, click Applications
> Enterprise Applications .
In the content pane, click the UDDI Registry application. Under Additional Properties on the right hand side, click Map security
roles to users/groups .
Set the WebSphere Application Server security role mappings to Everyone for the following UDDI services:
Versions 1 and 2 SOAP publish service (SOAP_Publish _User)
Version 3 publish service (V3SOAP_Publish_User_Role)
Version 3 custody transfer service (V3SOAP_CustodyTransfer_User_Role)
Version 3 security service (V3SOAP_Security_User_Role)
Changing the role mappings to Everyone prevents WebSphere Application Server security from overriding UDDI security.
Ensure that UDDI Policy is set to require the use of authentication tokens for the UDDI Version 3 Publish and Custody Transfer services (use of authentication tokens is already required for Version 1 and Version 2 Publish services). To do this, click UDDI > UDDI
Nodes > uddi_node, and under Policy Groups click APIs. Select the Authorization for publish and Authorization for custody transfer check boxes. (Select the Authorization for inquiry check box if you require authentication for UDDI Inquiry services).
Click OK .
With this configuration, no Security Role authentication restriction is imposed, but the credentials (user name and password) associated with the authentication token are authenticated by WebSphere Application Server.
Note: When WebSphere Application Server security is enabled, WebSphere Application Server data confidentiality management is independent of UDDI security and is managed as described in Configuring the UDDI Registry to use WebSphere Application Server security.