Network Deployment (Distributed operating systems), v8.0 > Secure applications and their environment > Authenticate users > Select an authentication mechanism > Configure LTPA and working with keys

  Previous Step   Next Step


Generate keys manually or automatically, and control the number of active keys.

 Step 2: Configure LTPA and working with keys JAX-WSWAS generates Lightweight Third Party Authentication (LTPA) keys automatically during the first server startup. We can generate additional keys as you need them in the Authentication mechanisms and expiration panel.

We can disable the automatic generation of new LTPA keys for key sets that are members of a key set group. Automatic generation creates new keys on a schedule that you specify when you configure a key set group, which manages one or more key sets. WAS uses key set groups to automatically generate cryptographic keys or multiple synchronized key sets.

Generate keys manually or enabling or disabling the generation of keys are tasks that require you to recycle the node agents and application servers to accept the new keys. If any of the node agents are down, run a manual file synchronization utility from the node agent machine to synchronize the security configuration from the dmgr.

Key sets manage LTPA keys in a key store that is based on a key alias prefix. A key alias prefix is automatically generated when you generate a new key and store it in a key store. Key stores can contain multiple versions of keys for any given key alias prefix. We can specify a maximum number of active keys in the key set configuration.

Read the Generating Lightweight Third Party Authentication keys article for more information.

Configure LTPA and generate the first LTPA keys.


Support information (generally applicable)


What to do next

Import and export keys.

  Previous Step   Next Step






+

Search Tips   |   Advanced Search