WebSEAL authentication

WebSEAL authentication is the method of identifying an individual process or entity attempting to log in to a secure domain. WebSEAL can require each user to provide proof of its identity. WebSEAL supports several authentication methods by default and can be customized to use other methods. When both server and client require authentication, the exchange is known as mutual authentication. The WebSEAL server process is independent of the authentication method. The result of successful authentication to WebSEAL is an ISAM user identity. WebSEAL uses this identity to build a credential for that user. The authorization service uses this credential to permit or deny access to protected objects after it evaluates the ACL permissions and POP conditions that govern the policy for each requested resource.

Parent topic: IBM Security Verify Access WebSEAL overview

Related concepts

• Introduction to IBM Security Verify Access
• WebSEAL introduction
• ISAM appliance
• WebSEAL functionality on the appliance
• Security concepts for a WebSEAL deployment
• Authorization process
• Security policy planning
• Content types and levels of protection
• Standard WebSEAL junctions
• Web space scalability