Portal, V6.1
Securing your environment on AIX
After installing IBM WebSphere Portal and configuring your user registry there are additional security tasks that you can run to ensure the security of your environment.
Perform the following tasks to secure your environment:
- Enabling step-up authentication and/or the Remember me cookie
Step-up authentication provides authentication levels for pages and portlets. The Remember me cookie is an encrypted HTTP cookie that supports state-of-the-art authentication, which allows you to present personalized portlets and pages in a public area without asking the user to manually authenticate. Together, these two features allow remembered users to view anonymous pages and portlets with a standard or identified authentication level. By providing a valid Remember me cookie, a user can also be allowed to access protected pages and portlets that require the identified authentication level. If the authentication level is set to authenticated, the user will have to provide a user ID and password to view the page or portlet.- Configure Remember me for J2EE authentication
WebSphere Portal allows you to configure Remember me for J2EE authentication, which works in conjunction with step-up authentication. When this feature is enabled, a user will be logged in automatically when accessing a protected portal area by presenting a valid Remember me cookie. Unless the requested resource has a higher step-up authentication requirement, the user will not be asked to provide any other proof of identityFor example...
user name and password to enter the protected portal area.
- Deploying portlets in a secure environment on AIX
IBM WebSphere Portal provides two user authentication modes that the Portlet Deployment Manager can use to authenticate with the IBM WAS administrative services when security is enabled.- Disable step-up authentication and/or the Remember me cookie
You can disable the step-up authentication task and/or the Remember me cookie task to remove the features from your system.- Step-up authentication properties
The step-up authentication mechanism can be configured using the console in WAS.- Remember me properties
The Remember me mechanism can be configured using the administrative console in WAS.
Parent topic
Configure security on AIX