Corporate Info  |  News  |  Solutions  |  Products  |  Partners  |  Services  |  Events  |  Download  |  How To Buy
	http://www.oracle.com/technology/documentation/index.html   |   Site Map   |   Search   |   PDF Files   |   Contact   |   Glossary
Tuxedo Doc Home   |   Security   |   Topic List   |   Previous   |   Next   |   Contents

   Using BEA Tuxedo Security

Authentication allows communicating processes to prove their identities. It is the foundation for most other security capabilities.

Except for the configuration instructions identified in this topic, the procedures for administering authentication depend upon the underlying authentication system of the application. For procedures to administer a custom authentication system, see the documentation for that system. For procedures to administer the default authentication system, see Administering Default Authentication and Authorization.

The following diagram demonstrates the use of the delegated trust authentication model by applications running BEA Tuxedo Release 7.1 or later software. Workstation Handlers (WSHs) and domain gateways (GWTDOMAINs) are known as trusted system gateway processes in the delegated trust authentication model, which is described in Understanding Delegated Trust Authentication.

Mutual Authentication in the Delegated Trust Authentication Model

Note: Mutual authentication is not used for a native client, which authenticates with itself.

The following topics provide the instructions needed to set up the configuration shown in the preceding diagram. All of the topics involve authentication and the authentication plug-in.

• Specifying principal names

• Mandating interoperability policy

• Establishing a link between domains

• Setting ACL policy

See Also

• Authentication

• Default Authentication and Authorization

• Administering Default Authentication and Authorization

• Security Administration Tasks

• Security Interoperability

• Security Compatibility

• What Is a Domain in Introducing the BEA Tuxedo System