Portal Express, Version 6.0
Operating systems: i5/OS, Linux, Windows
Out-of-box security
Choose this option if you are new to IBM® WebSphere® Portal Express and want to experiment with available options before customizing WebSphere Portal Express and staging to a production environment. You can also choose this option if you have a non-clustered environment with a small number of users, such as a portlet development environment or proof of concept environment.
You should have WebSphere Portal Express installed. Optional: Create a Secure Socket Layer (SSL); see Secure Socket Layer.
SSL encrypts all traffic between the client browser and the server, so that no one can "eavesdrop" on the information that is exchanged over the network between the client browser and WebSphere Portal Express. In addition, assuming that the IBM WebSphere Application Server on which WebSphere Portal Express is running is also configured to accept (or even require) SSL connections, the LTPA Token and other security and session information can be completely protected against hijack and replay attacks.
Security is now enabled with a default repository and a database user registry. You can enhance your security by Managing access, users, and groups. Authorization is sometimes referred to as access control. Authorization determines what interactions a user is permitted to have with a resource or a service. Administrators configure access to resources or services by assigning roles to users and groups.