Previous |
Next |
If you enable Tuxedo SECURITY while assembling a Tuxedo application, you need to configure certain authentication and authorization related information in the Security Management page. Click the Security Management button on the Domain UBBCONFIG Editor.
If the UBBCONFIG
SECURITY
parameter is not set to NONE
, you should specify an application password on the Security Management page, otherwise, a validation error occurs when saving the domain status.
If the UBBCONFIG
SECURITY
parameter is set to USER_AUTH | ACL | MANDATORY_ACL
, you should add Tuxedo user groups in the Security Management page. A table is used for collecting the group related information in the Group Management section. You can add, delete and edit a group in the table.
To add a group, do the following:
From the Group Management section, click Add.
On the page that appears, specify the following options:
GID: Tuxedo GID
Group Name: Tuxedo group name
Click OK.
If the UBBCONFIG
SECURITY
parameter is set to USER_AUTH | ACL | MANDATORY_ACL
, you should add Tuxedo users in the Security Management page. A table is used for collecting the user related information in the User Management section. You can add, delete, and edit a user in the table.
To add a user, do the following:
From the User Management section, click Add.
On the page that appears, specify the following options:
User Name: Tuxedo user name
Password: User password
UID: Tuxedo UID
Group Name: Choose an existing group from the list
Client Name: Tuxedo client name
Click OK.
If the *RESOURCES section SECURITY
parameter is set to USER_AUTH | ACL | MANDATORY_ACL
, the Resource Broker component checks if there is at least one user configured with client name "tpsysadm
". If not, an error message appears.
If the UBBCONFIG SECURITY
parameter is set to ACL or MANDATORY_ACL, you should add Tuxedo ACL on the Security Management page. A table is used for collecting the user related information in the Access Control List section. You can add, delete, and edit an access control list in the table.
To add an access control list, do the following:
From the Access Control List section, click Add.
On the page that appears, specify the following options:
Group Name: Choose an existing group from the list
Resource Type: The object type. You can choose one of the following: ENQ, DEQ, SERVICE
, and POSTEVENT
. The default is SERVICE
.
Resource Name: Enter a service name. If the resource type SERVICE
is selected, all service items in the UBBCONFIG file *SERVICES section are listed. You can either choose an existing service or enter a new name.