IBM Integration Bus, Version 9.0.0.8 Operating Systems: AIX, HP-Itanium, Linux, Solaris, Windows, z/OS

See information about the latest product version

SecurityProfiles configurable service

Select the objects and properties that you want to change for the SecurityProfiles configurable service.

To change these properties, you must specify the broker name and -c SecurityProfiles. You must also set the ObjectName to either Default_Propagation or the name of a SecurityProfiles configurable service that you have defined by using the mqsicreateconfigurableservice command. The properties and values are the same for all services.

For SecurityProfiles configurable services, you must stop and start the integration server for a change of property value to take effect.

The SecurityProfiles configurable service is independent of the securitycache component.

Supplied configurable services that are created for each broker Properties for each configurable service that is defined Description of properties

Default_Propagation

authentication

The type of authentication that is performed on the source identity. Valid values are:
  • NONE
  • LDAP
  • TFIM
  • WS-Trust V1.3 STS
  • A user-defined value

If you are using TFIM V6.1, specify TFIM. If you are using TFIM V6.2, specify WS-Trust V1.3 STS.

authenticationConfig

The information that the broker needs to connect to the provider, specific to the provider. It is a provider-specific configuration string.

authorization

 The types of authorization checks that are performed on the mapped or source identity. Valid values are:
  • NONE
  • LDAP
  • TFIM
  • WS-Trust V1.3 STS
  • A user-defined value

If you are using TFIM V6.1, specify TFIM. If you are using TFIM V6.2, specify WS-Trust V1.3 STS.

authorizationConfig

How the broker connects to the provider, specific to the provider. It is a provider-specific configuration string.

mapping

 The type of mapping that is performed. Valid values are:
  • NONE
  • TFIM
  • WS-Trust V1.3 STS
  • A user-defined value

If you are using TFIM V6.1, specify TFIM. If you are using TFIM V6.2, specify WS-Trust V1.3 STS.

mappingConfig

How the broker connects to the provider, specific to the provider. It is a provider-specific configuration string.

passwordValue

 How passwords are treated when they enter a message flow. Valid values are:
  • PLAIN
  • MASK
  • OBFUSCATE
Default is PLAIN.

propagation

 Indicates whether identity propagation is performed on output and request nodes. Valid values are:
  • TRUE
  • FALSE
Default is TRUE.
 

rejectBlankpassword

 Indicates whether the security manager internally rejects a user name that has an empty password token, without passing it to the configured security provider for authentication, for example an LDAP server. Valid values are:
  • TRUE
  • FALSE
Default is FALSE.
Related concepts:
Security profiles
Identity and security token propagation
Related reference:
Configurable services properties
mqsicreateconfigurableservice command
mqsideleteconfigurableservice command
mqsichangeproperties command
Parameter values for the securitycache component
mqsireportproperties command
an09144_.htm | Last updated Friday, 21 July 2017