Configure security for the SIP container

This section provides instructions specific to security for the SIP container, employed with software such as Tivoli Directory Server or Oracle Internet Directory.

Before you can configure security for your SIP container, you will need to:

1. Set up and activate Lightweight Third Party Authentication. For more information, see the Lightweight Third Party Authentication section.

2. Install Oracle Internet Directory or Tivoli Directory Server.

You may also need to:

• Adjust key group settings. Refer to Lightweight Third Party Authentication key sets and key set groups for LTPA key information.

• Establish and configure Trust Association Interceptor (TAI) settings. Refer to Trust association interceptor settings.

Overview

You must know the name of the key set group and the management scope where the key set group is defined in order to activate and secure LTPA with keys. Refer to Activating Lightweight Third Party Authentication key versions for the setup and activation procedures. To configure security based on the Lightweight Directory Access Protocol (LDAP), you can configure digest authentication by using either Tivoli Directory Server or Oracle Internet Directory.

• To configure digest authentication and TAI on WebSphere Application Server for Tivoli, select Configuring digest authentication and TAI for Tivoli Directory Server.

• For configuring digest authentication on WebSphere Application Server for Oracle Internet Directory, select Configuring digest authentication for Oracle Internet Directory.

If setting up a TAI you will need to specify the trust information for any reverse security proxy servers. See Trust association interceptor settings to configure TAI settings.

Related tasks

Related information