ap04140_.htm |
Last updated Friday, 21 July 2017You can create a security profile for use with Lightweight Directory Access Protocol (LDAP) or a WS-Trust V1.3 compliant security token server (STS), such as Tivoli® Federated Identity Manager (TFIM) V6.2. Support is also provided for TFIM V6.1, for compatibility with previous versions of IBM® Integration Bus. You can create the security profile by using either the mqsicreateconfigurableservice command or an editor in the IBM Integration Explorer.
Before you can enable security on a node or a message flow, you need to create a security profile that defines the security operations that you want to perform.
You can create a security profile for use with external security providers to provide the required security enforcement and mapping. You can configure the security profile to use different security providers for different security functions; for example, you might use LDAP for authentication and WS-Trust V1.3 STS for mapping and authorization.
If you want to extract and propagate an identity without security enforcement or mapping, you can use the supplied security profile called Default Propagation. The Default Propagation profile is a predefined profile that requests only identity propagation.
Last updated Friday, 21 July 2017