IBM Support

Ask the Experts Replay: WebSphere Application Server V8 Security Concepts

Webcasts


Abstract

This presentation helps customers understand some key security concepts in WebSphere Application Server V8. Topics covered include the following components: Cross cell communication, Dynamic Outbound SSL configuration and Java 2 security.

Content

To play or download the audio of this Ask the Experts session, see the Audio Section of this document.

See the Related Information Section of this document for a list of documents referenced during the presentation.



Ask the Experts session
31 July 2014 - 11:00 a.m. - 12:00 p.m. EDT

TimeQuestions asked
00:00Silence
00:05General introduction
02:29Technical introduction
03:19What is Dynamic Out bound SSL and how to configure Dynamic Out bound SSL?
07:55What policy files are used by Java 2 security in WebSphere Application Server?
10:54What variables can be used in was.policy and app.policy
11:58Cross Cell Single Sign-On (SSO) common scenarios and what is best practice for cross cell SSO settings?
19:45What is the LTPA key and how to prevent LTPA keys from becoming out of sync or corrupted?
23:53LTPA keys are stored in a file. Is there a command to read/list the LTPA keys file?
25:03Once we export a certificate from one cell, which form do we import that to the final certificate?
26:28Does WebSphere supports cross-domain single sign on? If so, what are the available solutions?
26:48Does WebSphere supports cross-domain single sign on through SAML?
27:18We see lots of these messages in our logs - SECJ0371W: Validation of the LTPA token failed because the token expired with the following info: Token expiration Date: <>. Should we be concerned?
28:43We have a company-signed SSL certificate. What is the best way to import this for ISIM 6.0 into WAS 8.5.5.2 so that it replaces the existing IBM certificate?
30:19Developer wants to administer his MDB to stop and start a listener using JMX in his application. Can this be limited to one JVM cell or is the admin operator authority level only at the cell level?
32:43What is the overhead for turning on Java 2 security?
35:17Closing remarks
38:51End of Call

Panel of Experts:
Varun TallapragadaWebSphere Application Server L2 Support
William R. Holtzhauser IIIWebSphere Application Server L2 Support
Ajit JariwalaWebSphere Application Server L2 Support


Presentation

WSTE-07312014-AskTheExperts-WebSphere-Application-Server-V8-Security-Concepts v2.pdfWSTE-07312014-AskTheExperts-WebSphere-Application-Server-V8-Security-Concepts v2.pdf

Get Adobe Reader to view PDF

Audio

To replay the recording of this conference call, click on Download Audio (audio in MP3 format). Right-click and select Save As to store the file on your local computer for later playback. Remember that you can fast forward to any question using the time index.

Original Publication Date

23 July 2014

[{"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"Security","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"}],"Version":"8.0;7.0","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]

Document Information

Modified date:
17 June 2018

UID

swg27042316

Page Feedback