test

Oracle Waveset 8.1.1 Resources Reference

Setting Up Web Access Control

The following procedure describes the general configuration steps to use Tivoli Access Manager as the Web Access Control for Waveset. Some of the following steps require detailed knowledge of the Tivoli Access Manager software.

ProcedureGeneral Steps for Configuring Tivoli Access Manager as Web Access Control

  1. Install and configure IBM Tivoli Access Manager Java Runtime Component on the Waveset server.

  2. Configure the JDK Security Settings on the Waveset server.

  3. Create the Access Manager SSL Config files on the Waveset server.

  4. Create a Junction in Access Manager for the Waveset URLs. Refer to the Tivoli Access Manager product documentation for more details.

    The following example pdadmin command illustrates how to create a junction:


    pdadmin server task WebSealServer create -t Connection
 / -p Port -h Server -c ListOfCredentials -r -i
 JunctionName

  5. Configure the Waveset Base HREF property for the WebSeal Proxy Server.

  6. Set up the Access Manager resource adapter.

  7. Load the Access Manager users into Waveset.

  8. Configure pass-through authentication for Access Manager in Waveset.

    When a user attempts to access the Waveset URLs through Access Manager, the user’s identity is passed in the HTTP header to Waveset. Waveset then uses that identity to verify the user exists in Access Manager and in Waveset. If the user is trying to access the Waveset Administrator interface, Waveset checks the Waveset Security configuration for the user to make sure they have Waveset administrative rights. End users are also verified against Access Manager, and whether they have a Waveset account.