Deploy portlets in a secure environment
IBM WebSphere Portal provides two user authentication modes that the Portlet Deployment Manager can use to authenticate with the IBM WAS administrative services when portal security is enabled.
The following two methods are supported in both a standalone or clustered environment.
Single ID method use.admin.user=true Default mode. Portal impersonates the WebSphere Portal server ID Multiple ID method use.admin.user=false Use the login ID of the WebSphere Portal user who issued the WAR deployment request. In this mode, every Portal user with portlet deployment rights must be added to the WAS Console User list with Administrator rights. Alternatively, we can add the Group of Portal Administrators to the WAS Console Group with Administrator rights.
The authentication modes are specified by the use.admin.user property in Deployment Service, and the property can be changed as described in Setting configuration properties.
The main difference between the two methods is that single ID method uses a preset ID regardless of who you log in to WebSphere Portal as while the multiple ID method uses the ID you logged in with but we cannot deploy a portlet unless the ID is added to the WAS Console Group with Administrator rights.
Related information
- Clustering and WebSphere Portal
- Portal service configuration
- Configuring a database user registry
- Configuring LDAP for non-realm support
- Configuring LDAP for realm support
- Resources and support
Parent Topic
Keeping the environment secure