If you are creating a JDBC data source in a JBoss application server, you can configure the data source to use a user name and password, or configure it to use a security realm.
Important! A JBoss Security Realm option must be used if FIPS is being used.
To configure the JDBC data source to use a security realm
Do not specify a user name and password in the userstore-ds.xml as described in step 4.
<application-policy name="imobjectstoredb"> <authentication> <login-module code="com.netegrity.jboss.datasource.PasswordEncryptedLogin" flag="required"> <module-option name="userName">fwadmin</module-option> <module-option name="password">{PBES}:gSex2/BhDGzEKWvFmzca4w==</module-option> <module-option name="managedConnectionFactoryName">jboss.jca:name=jdbc/objectstore,service=NoTxCM</module-option> </login-module> </authentication> </application-policy>
<application-policy name="imuserstoredb">
<module-option name="userName">user_store_user</module-option>
<module-option name="password">user_store_user_password</module-option>
Note: To encrypt the user store password, use the password tool (pwdtools) that is installed with CA Identity Manager.
<module-option name="managedConnectionFactoryName">
jboss.jca:name=userstore,service=NoTxCM
</module-option>
Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |