Securing websphere administrative console:
WebSphere Application Server provides the ability to secure the administrative console so only authenticated users can use it. In order to take advantage of this feature, you need to first activate WebSphere global security. Enabling security is an important step in ensuring a safe WebSphere environment.This section assumes that you have enabled WebSphere global security and therefore concentrates on the steps needed to secure the console. Console security is based on identifying users or groups that are defined in the active user registry and assigning roles to each of those users. When you log into the administrative console, you must use a valid administrator user ID and password. The roles determine the administrative actions the user can perform. Users and groups are added and roles assigned to them by selecting System Administration -> Console Users or System Administration -> Console Groups. You can choose the following roles for each user.
The roles are listed from most restrictive to most privileges:
=> Monitor allows a user to view the WebSphere configuration and current state.
=> Configurator has Monitor privilege plus the ability to cha nge the WebSphere
configuration.
=> Operator incorporates Monitor privilege plus the ability to change the runtime state, such
as starting and stopping services.
=> Administrator incorporates Operator plus Configurator properties.
Be sure to save your work . After saving the configuration, you must restart the application server in a standalone server environment or the deployment manager in a distributed server environment. The next time you log in to the administrative console, you must authenticate with one of the users that were identified as having an administrative role.
No comments:
Post a Comment