Configuring client authentication for human resources Web server
You must configure the general authentication settings for the HTTP Server when you specify that the HTTP Server require certificates for authentication. You configure these settings in the same security form that you used to configure the server to use Secure Sockets Layer (SSL).
To configure the server to require certificates for client authentication, follow these steps:
- Start the HTTP Server Administration interface.
- Using your browser, go to the i5/OS® Tasks page on your system at http://your_system_name:2001.
- Select IBM® Web Administration for i5/OS.
- To work with a specific HTTP server, select these page tabs Manage > All Servers > All HTTP Servers to view a list of all configured HTTP servers.
- Select the appropriate server from the list and click Manage Details.
- In the navigation frame, select Security.
- Select the Authentication tab in the form.
- Select Use i5/OS profile of client.
- In the Authentication name or realm field, specify a name for the authorization realm.
- Select Enabled for the Process requests using client's authority field and click Apply.
- Select the Control Access tab in the form.
- Select All authenticated users (valid user name and password) and click Apply.
- Select the SSL with Certificate Authentication tab in the form.
- Ensure that Enabled is the selected value in the SSL field.
- In the Server certificate application name field, ensure that the correct value is specified, for example, QIBM_HTTP_SERVER_MYCOTEST.
- Select Accept client certificate if available before making connection. Click OK.
When you complete the client authentication configuration, you can restart the HTTP server in SSL mode and begin protecting the privacy of the data of the human resources application.
Parent topic:
Scenario: Using certificates for internal authenticationPrevious topic: Creating and operating a local CANext topic: Starting the human resources Web server in SSL modeRelated information
IBM HTTP Server for i5/OS