|
|
|
NAME
create-connector-security-map - creates or modifies
a security map for the specified connector connection pool
SYNOPSIS
create-connector-security-map --user admin_user [--passwordfile filename] [--host host_name] [--port port_number] [--secure|-s] [--terse=false] [--echo=false] [--interactive=true] [--help] --poolname connector_connection_pool_name [--principals principal_name1[ , principal_name2 ]* | --usergroups user_group1[ , user_group2 ]*] --mappedusername username security_map_name
Use this command to create or modify a security map for the specified
connector connection pool. If the security map is not present, one is created.
Also, use this command to map the caller identity of the application (principal
or user group) to a suitable EIS principal in container-managed transaction-based
scenarios. One or more named security maps may be associated with a connector
connection pool. The connector security map configuration supports the use
of the wild card asterisk (*) to indicate all users or all user groups.
For this command to succeed, you must have first created a connector
connection pool using the create-connector-connection-pool
command.
The enterprise information system (EIS) is any system that holds the
information. It can be a mainframe, a messaging system, a database system,
or an application.
This command is supported in remote mode only.
If an option has a short option name, then the short option preceeds
the long option name. Short options have one dash whereas long options have
two dashes.
- -u --user
-
The authorized domain application server administrative username.
- -w --password
-
The --password option is deprecated. Use --passwordfile instead.
- --passwordfile
-
This option replaces the -- password option. Using the --password option on the command line or through the environment is
deprecated. The --passwordfile option specifies the name of a file containing the password entries in a specified format. The entry for the password must have the AS_ADMIN_ prefix followed by the password name in capital letters. For example, to specify the domain
application server password, use an entry with the following format: AS_ADMIN_PASSWORD=password, where password is the actual administrator password. Other passwords that can be specified include AS_ADMIN_MAPPEDPASSWORD, AS_ADMIN_USERPASSWORD,
AS_ADMIN_SAVEDMASTERPASSWORD, AS_ADMIN_MQPASSWORD, AS_ADMIN_ALIASPASSWORD, and so on.
- -H --host
-
The machine name where the domain application server is running. The default value is localhost.
- -p --port
-
The port number of the domain application server listening for administration requests. The default port number for Platform Edition is 4848. The default port number for Enterprise
Edition is 4849.
- -s --secure
-
If set to true, uses SSL/TLS to communicate with the domain application server.
- -t --terse
-
Indicates that any output data must be very concise, typically avoiding human-friendly sentences and favoring well-formatted data for consumption by a script. Default is false.
- -e --echo
-
Setting to true will echo the command line statement on the standard output. Default is false.
- -I --interactive
-
If set to true (default), only the required password options are prompted.
- -h --help
-
Displays the help text for the command.
- --target
-
The -target option is deprecated in this
release.
- --poolname
-
This property specifies the name of the connector connection
pool to which the security map that is to be updated or created belongs.
- --principals
-
This property specifies a comma-separated list of application-specific
principals. Use either the -principals or -usergroups options, but not both.
- --usergroups
-
This property specifies a comma-separated list of application--specific
user groups. Use either the -principals or -usergroups options, but not both.
- --mappedusername
-
This property specifies the EIS username.
- --mappedpassword
-
The --mappedpassword
option is deprecated. Use --passwordfile pointing to a file that contains an entry in the following format: AS_ADMIN_MAPPEDPASSWORD=mapped-password. If not specified using the passwordfile option, the user will be prompted for this password by the asadmin
command-line tool.
-
security_map_name
-
name of the security map to be created.
Example 1. Using create-connector-security-map
It is assumed that the connector pool has already been created using
the create-connector-pool command.
asadmin> create-connector-security-map --user admin
--passwordfile pwd_file --poolname connector-pool1 --principals principal1, principal2
--mappedusername backend-username securityMap1
Command create-connector-security-map executed successfully
- 0
-
command executed successfully
- 1
-
error in executing the command
delete-connector-security-map(1), list-connector-security-maps(1), update-connector-security-map(1)
J2EE SDK 1.4 | Go To Top | Last Changed 31 Jan 2005 |
Company Info
|
Contact
|
Copyright 2004 Sun Microsystems, Inc. All rights reserved.
Use is subject to license terms.
|