iSeries security resources

These resources will help you set up a strong security policy for your iSeries server.

Manuals

AS/400 Tips and Tools for Securing your AS/400, SC41-5300 Link outside Information Center
This book provides a set of practical suggestions for using the security features of iSeries and for establishing operating procedures that are security-conscious.

OS/400 Security Reference, SC41-5302 Link outside Information Center
This book provides information about planning, setting up, managing, and auditing security on your iSeries system. It describes all the features of security on the system and discusses how security features relate to other aspects of the system, such as work management, backup and recovery, and application design.

Redbooks

WebSphere Application Server Version 5.0 Security Link outside Information Center
This IBM Redbook provides an overview of WebSphere Application Server Version 5.0 Security, including J2EE security and programmatic security techniques. It also provides information about end-to-end security solutions that include WebSphere Application Server Version 5.0 as part of an e-business solution.

AS/400 Internet Security: Protecting Your AS/400 from HARM in the Internet, SG24-4929-00 Link outside Information Center
This document describes all you need to know about iSeries security and how the different security elements fit together. This will help you understand the comprehensive iSeries security options available to secure your system and data.

Domino and WebSphere Integration on the IBM eServer iSeries Server, SG24-6223-00 Link outside Information Center
This IBM Redbook documents the setup and configuration of an integrated environment with WebSphere and Domino on the IBM iSeries server. Part 1 of this redbook focuses on administration topics, such as single signon and the use of a common LDAP directory for authentication, as well as options for different HTTP stacks. Part 2 of this redbook focuses on investigating the application development topic of how WebSphere can access Domino applications. It shows and discusses code snippets from example programs.

HTTP Server (powered by Apache): An Integrated Solution for IBM iSeries Servers, SG24-6716-00 Link outside Information Center
This IBM Redbook is designed to help you plan, install, configure, troubleshoot, and understand the HTTP Server (powered by Apache) running on the IBM iSeries server. It includes configuring the HTTP server for basic authentication, access control and SSL. It also walks you through the steps to implement Web application serving with Java featuring WebSphere Application Server.

Web sites

AS/400 Technical Studio: AS/400 Security Workshop Link outside Information Center
The AS/400 Security Workshop covers topics such as Internet Security. Use the iSeries server Security Advisor to help determine your optimal security settings.

Common Security Interoperability Version 2 (CSIv2) Specification Link outside Information Center
WebSphere security supports the use of CSIv2 as an authentication protocol. For more information about CSIv2, see the specification.

Java 2 Platform Security for Java 2 SDK, Standard Edition, 1.3 Link outside Information Center
See this document for information about Java 2 Security architecture, policy permissions, and certificate support. WebSphere Application Server supports the use of Java 2 security.

Programming model

WebSphere Application Server ships some security documentation, which is installed as part of the product. By default, these documents are located in the /QIBM/ProdData/WebAS5/Base/web/docs directory.

  • JSSE Documentation

    • JSEE API documentation
      The web/docs/jsse/jssedocs.jar file contains the API documentation of the JSSE APIs. Extract the file, and open index.html in a browser.

    • JSSE API User's Guide
      This is located at web/docs/jsse/API_users_guide.html.

    • JSSE sample applications
      Extract web/docs/jsse/samplejsse.jar.

  • iKeyman Documentation
    See web/docs/ikeyman/ikmuserguide.pdf for the SSL Introduction and iKeyman.

  • JCE Documentation

    • JCA specification and JCE API usage
      See web/docs/jce/api_users_guild.html.

    • JCE sample applications
      Extract web/docs/jce/SampleJCE.jar.

    • Java Cryptography Architecture Reference
      See web/docs/jce/CryptoSpec.html.

    • How to implement a JCE provider
      See web/docs/jce/HowToImplAProvider.html.

    • JCE API documentation
      Extract web/docs/jce/jcedocs.jar.

    • Overview of IBM JCE
      See web/docs/jce/readme.jce.ibm.html.

  • Application Assembly Tool (AAT) Documentation
    See web/docs/aat/en/index.html for AAT documentation. This can help when securing J2EE enterprise applications.

Product documentation

iSeries Information Center (V5R1)

Basic system security and planning
Basic system security and planning provides you with detailed information about planning and setting up your iSeries 400 system security

Digital certificate management
Digital Certificate Manager (DCM) is a free iSeries feature, to centrally manage certificates for your applications

Directory Services (LDAP)
Directory Services provides a Lightweight Directory Access Protocol (LDAP) server on iSeries 400.

IBM HTTP Server for iSeries
Information for this topic applies to HTTP Server (powered by Apache)

iSeries Information Center (V5R2)

Digital certificate management
Digital Certificate Manager (DCM) is a free iSeries feature, to centrally manage certificates for your applications

IBM HTTP Server for iSeries
Information for this topic applies to HTTP Server (powered by Apache)

Security and Directory Services
Read this information to understand iSeries(TM) e-business security and Directory Services offerings