Portal Express, Version 6.0
Operating systems: i5/OS, Linux, Windows
Member Manager
Member Manager is the Common User Repository Management instance for IBM® WebSphere® Portal Express.
Because Member Manager can be used to modify user and group relationships, it is necessary to restrict access to this component to authorized users only.
To ensure the limited access, WebSphere Portal Express uses J2EE authorization roles to restrict access to the Member Manager EJB. With security enabled in the portal server, only one dedicated system user is granted access to the Member Manager EJB by assigning this system user the corresponding J2EE roles of the Member Manager EJB.
The user name and password for this user is stored within the portal credential vault in the segment named...
DefaultAdminSegment
and a slot named...
wmm.system.id.user
You can specify the initial user name and password during installation; whenever security is disabled and enabled again, the user name and password will be re-extracted from the wpconfig.properties file. These values should be deleted from the property file after successful security activation (for example, using the config task).
In this configuration, prior to calling Member Manager functionality, WebSphere Portal Express programmatically logs in as this system user and uses the corresponding newly created IBM WebSphere Application Server Security context during all EJB method calls. WebSphere Portal Express will use the WSSubject.doAs() functionality provided by WebSphere Application Server.
Related information