Portal services deliver varied content to varied users, often over the public Internet. In many cases, the content is confidential and should only be viewed by authorized users. Hence, the following security features are included in the basic feature requirements for portal services:
Authentication of all users, including remote and wireless client access and mobile access
Role-based access control
In addition, a more general set of security requirements is needed to provide secure access to confidential data. These requirements are shown in the following table.
Table 1–3 Security Requirements for Portal Services
The Portal Service on Application Server Cluster reference configuration is designed to support these security requirements.