LTPA authentication
ISAM supports authentication using an LTPA cookie received from the client. This section contains the following topics:
- LTPA authentication overview
Various IBM servers provide support for the cookie-based lightweight third-party authentication mechanism (LTPA). Among these servers are WebSphere and DataPower . To achieve a single signon solution to one or more of these servers, we can configure WebSEAL to support LTPA authentication.- Enable LTPA authentication
The ltpa-auth stanza entry is located in the [ltpa] stanza of the WebSEAL configuration file. It enables and disables the LTPA authentication method.- Key file information
The LTPA token is encrypted by a password-protected secret key. The key itself is generated by WebSphere and is contained in a key file. This key file is password-protected by a clear text key.- Specify the cookie name for clients
We can configure the name of the cookie containing the LTPA token that WebSEAL issues to clients.- Specify the cookie name for junctions
We can configure the name of the cookie containing the LTPA token for junctioned web servers.- Controlling the lifetime of the LTPA Token
- Disable LTPA authentication
Parent topic: Authentication methods
Related concepts
- Basic authentication
- Forms authentication
- Client-side certificate authentication
- Token authentication
- Kerberos authentication through an External Authentication Interface (EAI)
- Windows desktop single sign-on
- OAuth Authentication
- OpenID Connect (OIDC) authentication
Related reference