WAS v8.5 > Secure applications > Authenticate users

Integrating third-party HTTP reverse proxy servers

These steps are required to use a trust association interceptor with a reverse proxy security server.

WebSphere Application Server enables you to use multiple trust association interceptors. The application server uses the first interceptor that can handle the request.

1. Access the dmgr console.

   Type http://fully_qualified_host_name:port_number/ibm/console in a web browser.

   Port 9060 is the default port number for accessing the dmgr console. During installation, however, you might have specified a different port number. Use the appropriate port number.

2. Click Security > Global security.

3. Under Web and SIP security, click Trust association.

4. Select the Enable trust association option.

5. Under Additional properties, click Interceptors. The default value appears.
6. Verify the appropriate trust association interceptors are listed.

Results

Trust association is enabled.

1. If we are enabling security, complete the remaining steps for enabling security.

2. Save, stop and restart all of the product servers (deployment managers, nodes and application servers) for the changes to take effect.

Subtopics

• Trust association settings
  Use this page to enable trust association, which integrates application server security and third-party security servers. More specifically, a reverse proxy server can act as a front-end authentication server while the product applies its own authorization policy onto the resulting credentials passed by the proxy server.
• Trust association interceptor page
  Use this page to specify trust information for reverse security proxy servers.
• Trust association interceptor settings
  Use this page to specify trust information for reverse security proxy servers.
• Trust associations
  Trust association enables the integration of IBM WAS security and third-party security servers. More specifically, a reverse proxy server can act as a front-end authentication server while the product applies its own authorization policy onto the resulting credentials that are passed by the proxy server.
• Trust association settings
  Use this page to enable trust association, which integrates application server security and third-party security servers. More specifically, a reverse proxy server can act as a front-end authentication server while the product applies its own authorization policy onto the resulting credentials passed by the proxy server.
• Trust association interceptor page
  Use this page to specify trust information for reverse security proxy servers.
• Trust association interceptor settings
  Use this page to specify trust information for reverse security proxy servers.

Related concepts:

Web component security
Trust associations

Related

Authenticate users
Enable security
Configure single sign-on using trust association
Configure single sign-on using trust association interceptor ++

+

Search Tips   |   Advanced Search