Lesson 2.1: Configure client server security

The client properties file indicates the CredentialGenerator implementation class to use.

About this task

Configure the client properties file with the -Dobjectgrid.client.props JVM property. The file name specified for this property is an absolute file path, such as samples_home/security/client2.props. See Client properties file for more information about the client properties file.
Related referenceClient properties fileYou can create a properties file based on your requirements for WebSphere eXtreme Scale client processes. Related informationModule 2: Configure WebSphere eXtreme Scale to use WebSphere Application Server Authentication plug-insAfter you have created the WebSphere Application Server configuration, you can integrate WebSphere eXtreme Scale authentication with WebSphere Application Server.Credential API documentation

Client properties file contents

This example uses WebSphere Application Server security tokens as the client credential. The client2.props file is in the samples_home/security directory. The client2.props file includes the following settings:
securityEnabled
When set to true, indicates that the client must send available security information to the server.
credentialAuthentication
When set to Supported, indicates that the client supports credential authentication.
credentialGeneratorClass
Indicates the com.ibm.websphere.objectgrid.security.plugins.builtins.WSTokenCredentialGenerator class so the client retrieves the security tokens from the thread. See Security integration with WebSphere Application Server for more information about how security tokens are retrieved.

Setting the client properties file using Java™ virtual machine (JVM) properties

About this task

In the administrative console, complete the following steps to both the s1 and s2 servers in the appCluster cluster. If you are using a different topology, complete the following steps to all of the application servers to which the EmployeeManagement application will be deployed.

Procedure

  1. Servers > WebSphere application servers > server_name > Java and Process Management > Process definition > Java Virtual Machine.
  2. Create the following generic JVM property to set the location of the client properties file: 
    -Dobjectgrid.client.props=samples_home/security/client2.props
  3. Click OK and save your changes.

Lesson checkpoint

You edited the client properties file and configured the servers in the appCluster cluster to use the client properties file. This properties file indicates the CredentialGenerator implementation class to use.