Portal Express, Version 6.0
Operating systems: i5/OS, Linux, Windows

---

 

Configure security

This section includes information related to planning, configuring, and enabling security for your site. Some topics include security scenarios and choosing your user registry.

• Planning
  This section provides an overview of information to plan security for your IBM^® WebSphere^® Portal Express environment because WebSphere Portal Express and IBM WebSphere Application Server require some form of user registry.

• Out-of-box security
  Choose this option if you are new to IBM WebSphere Portal Express and want to experiment with available options before customizing WebSphere Portal Express and staging to a production environment. You can also choose this option if you have a non-clustered environment with a small number of users, such as a portlet development environment or proof of concept environment.

• Database user registry
  You can configure IBM WebSphere Portal Express to use a database user registry to store user information and to authenticate users. This setup is not recommended for production scenarios due to performance constraints and difficulties managing a large number of users and groups. This section discusses the issues to consider and the procedures to follow if you plan to use a database user registry as the IBM WebSphere Application Server security type with WebSphere Portal Express.

• LDAP user registry
  Choose the appropriate LDAP to install, set up, and configure. Then configure any additional LDAP settings before verifying your LDAP server is working.

• Custom user registry
  A custom user registry is a customer-implemented user registry. A custom-implemented user registry can support virtually any type or form of an accounts repository from a relational database, flat file, and so on. The custom user registry provides considerable flexibility in adapting WebSphere Portal Express and security to various environments where some form of a user registry, other than LDAP or Member Manager database, already exists in the operational environment.

• Secure Socket Layer
  This section provides information about adding a secure socket layer to your LDAP server.

• Keeping your environment secure
  This section provides an overview of topics related to keeping your environment secure:

• Enabling HTTP Basic Authentication for simple clients
  IBM WebSphere Portal Express provides an HTTP Basic Authentication Trust Association Interceptor that can be enabled to allow specific clients to log into the portal by using HTTP Basic Authentication instead of HTTP Form Based Authentication.

 

Parent topic:

Configuring

 

Related concepts
Configuration tools

 

Related tasks
Changing the portal URI Enabling workflow for document approval

---