Go to main content
1/9
Contents
Title and Copyright Information
Preface
Audience
Documentation Accessibility
1
Converged Application Server Security Overview
Basic Security Considerations
Overview of Converged Application Server Security
Understanding the Converged Application Server Environment
Oracle Security Documentation
Common Security Configuration Tasks
2
Converged Application Server Security Concepts
About Application Security
Authentication for SIP Servlets
Authentication Providers
Overriding Authentication with Trusted Hosts
Identity Assertion Support
Role Assignment for SIP Servlet Declarative Security
Security Event Auditing
3
Configuring Digest Authentication
Overview of Digest Authentication
What Is Digest Authentication?
Digest Authentication Support in Converged Application Server
Prerequisites for Configuring LDAP Digest Authentication
Steps for Configuring Digest Authentication
Configure the LDAP Server or RDBMS
Using Unencrypted Passwords
Using Precalculated Hash Values
Using Reverse-Encrypted Passwords
Reconfigure the DefaultAuthenticator Provider
Configure an Authenticator Provider
Configure a New Digest Identity Asserter Provider
Configure an LDAP Digest Identity Asserter Provider
Configure an RDBMS Digest Identity Asserter Provider
Sample Digest Authentication Configuration Using Embedded LDAP
Store User Password Information in the Description Field
Set the Embedded LDAP Password
Configure the Digest Identity Asserter Provider
4
Configuring Client-Cert Authentication
Overview of Client-Cert Authentication
Configuring SSL and X509 for Converged Application Server
Configuring the Default Identity Asserter
Configuring the LDAP X509 Identity Asserter
Configuring Converged Application Server to Use WL-Proxy-Client-Cert
Supporting Perimeter Authentication with a Custom IA Provider
5
Configuring SIP Servlet Identity Assertion Mechanisms
Overview of SIP Servlet Identity Assertion Mechanisms
Understanding Trusted Host Forwarding with P-Asserted-Identity
Overview of Strict and Non-Strict P-Asserted-Identity Asserter Providers
Configuring a P-Asserted-Identity Assertion Provider
Understanding Identity Assertion with the Identity and Identity-Info Headers
Configuring the Identity Header Assertion Provider
6
Configuring 3GPP HTTP Authentication Assertion Providers
Overview
Configuring a X-3GPP-Asserted-Identity Provider
Scripting on this page enhances content navigation, but does not change the content in any way.