Configure trust association interceptors

 

Integrating third-party HTTP reserve proxy servers

These steps are required to use either a WebSEAL trust association interceptor or your own trust association interceptor with a reverse proxy
security server. WebSphere Application Server enables you to use multiple trust association interceptors. The Application Server uses the first interceptor that can handle the request.

  1. Access the administrative console by typing http://localhost:port_number/ibm/console in a Web browser. Port 9060 is the default port number for accessing the administrative console. During installation, however, you might have specified a different port number. Use the appropriate port number.

  2. Click Security > Global security .

  3. Under Authentication, click Authentication mechanisms > LTPA .

  4. Under Additional properties, click Trust association .

  5. Select the Enable trust association option.

  6. Under Additional properties, click Interceptors . The default value appears.

  7. Verify that the appropriate trust association interceptors are listed. If you need to use a WebSEAL trust association interceptor, see Configuring single signon using the trust association interceptor or Configuring single signon using trust association interceptor ++. If you are not using WebSEAL and need to use a different interceptor, complete the following steps:

    1. Select both the com.ibm.ws.security.web.WebSealTrustAssociationInterceptor and the com.ibm.ws.security.web.TAMTrustAssociationInterceptorPlus class name and click Delete .

    2. Click New and specify a trust association interceptor.

Result Enables trust association.

 

What to do next

  1. If you are enabling security, make sure that you complete the remaining steps for enabling security.

  2. Save, stop and restart all of the product servers (deployment managers,
    nodes and Application Servers) for the changes to take effect.



Sub-topics

Trust association settings

Trust association interceptor collection

Trust association interceptor settings

Trust association interceptor support for Subject creation

Related concepts

Web component security

Trust associations

Related tasks

Enabling security for all application servers

Configuring single signon using the trust association interceptor

Configuring single signon using trust association interceptor ++

Authenticating users

Searchable topic ID: tsec_trust