You must create a realm in which the Login Module authenticates identities associated with System Login requests for EJB container resources.
Note: The following procedure provides an overview of the steps required to create the required policy objects with appropriate parameter settings. For detailed procedural information, see the Policy Server Configuration Guide.
To create a realm for non-challenged requests:
SiteMinder System Login Realm.
SiteMinder Login Module System Login Assertion Realm.
The SiteMinder Agent Identity you configured for the SiteMinder Agent for IBM WebSphere.
/smsystemrealm (any value is valid, but it must match value of SystemAuthResource Agent configuration parameter specified for the Login Module).
For example, /sitemindersystemirealm.
Basic or any authentication scheme.
An applicable value greater than the value specified for the WebSphere cache timeouts which apply to the WebSphere created RunAs Subject.
An applicable value greater than the value specified for the WebSphere cache timeouts which apply to the WebSphere created RunAs Subject.
Non-persistent.
Configuring rules or policies for the System Login realm is typically unnecessary. However, to implement user mapping, set an authentication response attribute, and then configure appropriate rules and policies for the System Login realm.
Copyright © 2010 CA. All rights reserved. | Email CA Technologies about this topic |