Portal Express, Version 6.0
Operating systems: i5/OS, Linux, Windows

---

 

Configure the Producer portal for LTPA token authentication

After you have exported the portal EAR file and imported it into the assembly tool, you can now make the modifications required to configure your Producer portal for LTPA authentication.

You can use all security tokens that IBM^® WebSphere^® Application Server supports. The example scenario and configuration procedure in this topic uses LTPA token forwarding. For these modifications, use the tools provided by the Application Server Toolkit (AST). The AST is provided with the portal on a separate set of CDs. To make these modifications, you perform the following tasks:

• Modifying the Web services security extensions for LTPA authentication on the Producer portal

• Modifying the Web services security bindings for LTPA authentication on the Producer portal

For more general and detailed background information about configuring Web services security while assembling Web services applications refer to the WebSphere Application Server information center under the following locations:

• http://publib.boulder.ibm.com/infocenter/wasinfo/v6r0/topic/com.ibm.websphere.base.doc/info/aes/ae/twbs_confappwssassembly.html.

• http://publib.boulder.ibm.com/infocenter/wasinfo/v6r0/topic/com.ibm.websphere.nd.doc/info/ae/ae/catk_assemblytools.html

 

Parent topic:

Securing WSRP by LTPA for a Producer portal

 

Previous topic

Importing the portal EAR file into an assembly tool

 

Next topic

Exporting the modified portal EAR file from the assembly tool

 

Modifying the Web services security extensions for LTPA authentication on the Producer portal

As part of specifying the LTPA authentication for a Producer portal, you add the necessary Producer Web service security extensions.

You need to add the necessary Producer security extension information for each WSRP portType. To specify the security extension information for a Producer portal, you modify the Web service client security extensions. To do this, you use the Web services editor of the assembly tool. Proceed by the following steps:

1. In the J2EE perspective, project explorer, expand the WebServices > Services subtree.

2. Open the service descriptor WSRPService with the WebServices Editor. It is the default.

3. In the Web Services editor navigate to the tab Extensions.

4. For every port that requires LTPA token authentication, select the port in the Port Component Binding section.

5. Select Request Consumer Service Configuration Details > Required Security Token.

6. Click Add to add a new token.

7. In the pop-up Required Security Token dialog, proceed by the following steps:

   1. Assign a unique name to the token.

   2. Select LTPA token as the token type from the drop-down list.

   3. Click OK to leave the dialog.

8. For every port that requires LTPA token authentication, select the port in the Port Component Binding section. UnderRequest Consumer Service Configuration Details > Caller Part , click Add to add a caller part definition. In the pop-up Caller Part dialog, proceed with the following steps:

   1. Assign the caller a unique name.

   2. From the drop-down list select LTPA token as the token type.

   3. Click OK to leave the dialog.

9. Click Save to save your changes in the service descriptor.

 

Modifying the Web services security bindings for LTPA authentication on the Producer portal

As part of specifying the LTPA authentication for a Producer portal, you add the necessary Producer security binding information.

You need to add the necessary Producer security binding information for each WSRP portType. To specify the security binding information for a Producer portal, you modify the Web service client security bindings. To do this, you use the Web services editor of the assembly tool. Proceed by the following steps:

1. In the J2EE perspective, project explorer, expand theWebServices > Services subtree.

2. Open the service descriptor WSRPService with the WebServices Editor. It is the default.

3. In the Web Services editor navigate to the tab Binding Configurations.

4. For every port that requires LTPA token authentication, select the port in the Port Component Binding section.

5. Select Request Consumer Binding Configuration Details > Token Consumer.

6. Click Add to add a new token consumer.

7. In the pop-up Token Consumer dialog, proceed by the following steps:

   1. Assign a unique name to the token consumer.

   2. Select com.ibm.wsspi.wssecurity.token.LTPATokenConsumer as the token consumer class from the drop-down list.

   3. Select the security token to which this token consumer applies. The security token name is the name of the token that you assigned in the Web service security extensions for the portType that you are configuring.

   4. From the drop-down list select LTPA Token as the value type.

   5. Click OK to leave the dialog.

8. Click Save to save your changes in the service descriptor.

Alternatively, you can also modify the Web services security bindings by using the administrative console. However, if do this, you can only perform this step after you have modified the Web Services Security Extensions in the previous step and redeployed the portal EAR file. For details about the administrative console, refer to the WebSphere Application Server Information Center.

---