Sun-microsystems GLASSFISH ENTERPRISE 820433510 Manual de usuario Pagina 102
- Pagina / 256
- Tabla de contenidos
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
About Authentication and Authorization
Authentication and authorization are central concepts of application server security. The
following topics are discussed related to authentication and authorization:
■
“Authenticating Entities” on page 102
■
“Authorizing Users” on page 103
■
“Specifying JACC Providers” on page 103
■
“Auditing Authentication and Authorization Decisions” on page 103
■
“Conguring Message Security” on page 104
Authenticating Entities
Authentication is the way an entity (a user, an application, or a component) determines that
another entity is who it claims to be. An entity uses security credentials to authenticate itself.
The credentials may be a user name and password, a digital certicate, or something else.
Typically, authentication means a user logging in to an application with a user name and
password; but it might also refer to an EJB providing security credentials when it requests a
resource from the server. Usually, servers or applications require clients to authenticate;
additionally, clients can require servers to authenticate themselves, too. When authentication is
bidirectional, it is called mutual authentication.
When an entity tries to access a protected resource, the Enterprise Server uses the
authentication mechanism congured for that resource to determine whether to grant access.
For example, a user can enter a user name and password in a Web browser, and if the
application veries those credentials, the user is authenticated. The user is associated with this
authenticated security identity for the remainder of the session.
The Enterprise Server supports four types of authentication. An application species the type of
authentication it uses within its deployment descriptors.
TABLE 9–1 Enterprise Server Authentication Methods
Authentication Method Communication Protocol Description User Credential
Encryption
BASIC HTTP (SSL optional) Uses the server's built-in pop-up
login dialog box.
None, unless using SSL.
FORM HTTP (SSL optional) Application provides its own
custom login and error pages.
None, unless using SSL.
CLIENT-CERT HTTPS (HTTP over SSL) Server authenticates the client using
a public key certicate.
SSL
About Authentication and Authorization
Sun GlassFish Enterprise Server 2.1 Administration Guide • December 2008102
- 2.1 Administration Guide 1
- 090122@21808 2
- Contents 10
- Examples 17
- Book Title Description 19
- Typographic Conventions 21
- Symbol Conventions 21
- Sun WelcomesYour Comments 22
- Enterprise Server Overview 23
- Tools for Administration 24
- JConsole 25
- Enterprise Server Concepts 26
- Usage Proles 27
- Node Agent 28
- Server Instance 29
- Creating a Domain 31
- Deleting a Domain 32
- Listing Domains 32
- Starting the Domain 32
- Stopping the Domain 33
- Restarting the Domain 33
- Creating a Cluster 33
- Starting a Cluster 34
- Stopping a Cluster 34
- Creating a Node Agent 34
- Starting a Node Agent 34
- Stopping a Node Agent 35
- Starting an Instance 35
- Stopping an Instance 35
- Restarting an Instance 35
- To migrate the DAS 36
- Java Business Integration 39
- Binding Components 40
- JBI Component Loggers 40
- Service Assemblies 41
- Shared Libraries 42
- JBI Descriptors 42
- JDBC Resources 43
- JDBC Connection Pools 44
- Setting Up Database Access 45
- Chapter 3 • JDBC Resources 47 47
- Parameter Description 48
- Chapter 3 • JDBC Resources 49 49
- Chapter 3 • JDBC Resources 51 51
- Java DB Type 4 Driver 53
- Databases 54
- IBM DB2 8.1 Type 2 Driver 56
- MySQL Type 4 Driver 57
- IBM InformixType 4 Driver 61
- CloudScape 5.1 Type 4 Driver 61
- JMS Resources 63
- Resources 64
- JMS Connection Factories 65
- JMS Destination Resources 65
- JMS Physical Destinations 65
- Foreign JMS Providers 67
- Resource Adapter Properties 68
- Activation Spec Properties 72
- Conguring JavaMail Resources 75
- Creating a JavaMail Session 76
- JNDI Resources 77
- Using Custom Resources 79
- Connector Resources 81
- Equivalent asadmin command 83
- Click Save 84
- Attributes 85
- More Information 86
- Managing Security Maps 87
- Managing Connector Resources 88
- To Edit a Connector Resource 89
- Web and EJB Containers 93
- The SIP Servlet Container 94
- TheWeb Container 95
- The EJB Container 95
- Conguring Security 97
- Tools for Managing Security 98
- Changing the Master Password 100
- Changing the Admin Password 101
- Authenticating Entities 102
- Authorizing Users 103
- Specifying JACC Providers 103
- Conguring Message Security 104
- Role Mapping 105
- About Digital Certicates 108
- About Secure Sockets Layer 109
- About Ciphers 110
- About Firewalls 111
- About Certicate Files 111
- Using the keytool Utility 112
- -alias keyAlias 116
- -keystore keystore-name 116
- -storepass password 116
- Using the certutil Utility 117
- Conguring PKCS#11 Tokens 121
- Managing Keys And Certicates 122
- Listing Keys and Certicates 123
- System Administrator 128
- Application Deployer 129
- Application Developer 129
- About UsernameTokens 129
- About Digital Signatures 130
- About Encryption 130
- Securing aWeb Service 132
- Security 133
- Congurations 134
- Conguring a JCE Provider 135
- Message Security Setup 137
- <client-container> 139
- Further Information 140
- Diagnostic Service Framework 141
- Transactions 143
- About Transactions 144
- Conguring Transactions 145
- Chapter 12 • Transactions 147 147
- To set the keypoint interval 148
- Conguring the HTTP Service 149
- HTTP Listeners 150
- Managing Web Services 153
- Web Services Standards 154
- Java EE Web Service Standards 154
- DeployingWeb Services 155
- UsingWeb Services Registries 156
- Adding a Registry 157
- MonitoringWeb Services 158
- CHAPTER 15 161
- Conguring the ORB 162
- Managing IIOP Listeners 162
- Thread Pools 163
- Working with Thread Pools 164
- Conguring Logging 165
- About Logging 166
- Viewing Server Logs 169
- _ThreadID=13 170
- About Monitoring 171
- Overview of Monitoring 172
- The HTTP ServiceTree 173
- The Resources Tree 174
- The Connector Service Tree 174
- The JMS ServiceTree 174
- Services 175
- EJB Container Statistics 176
- EJB Method Statistics 177
- EJB Session Store Statistics 177
- EJB Pool Statistics 179
- EJB Cache Statistics 179
- Web Container Statistics 180
- HTTP Service Statistics 181
- Table 18–12 184
- Thread Pools Statistics 186
- JVM Statistics in Java SE 187
- Viewing Monitoring Data 193
- Example 1 197
- Example 2 197
- To Use the PetStore Example 199
- Returns: 201
- Top Level 203
- Applications Level 203
- HTTP Service level 206
- HTTP-Service Level 207
- Thread-Pools Level 207
- Resources Level 208
- Transaction-Service Level 208
- ORBLevel 208
- Using JConsole 209
- Conguring Management Rules 215
- Tuning the JVM Settings 219
- Conguring Advanced Settings 220
- APPENDIX A 221
- Platforms 223
- User Logs Out 225
- Top Level Elements 227
- Elements Not Aliased 229
- The asadmin Utility 231
- Passwordlecontents 233
- AS_ADMIN_PASSWORD=value 233
- AS_ADMIN_ADMINPASSWORD=value 233
- AS_ADMIN_USERPASSWORD=value 233
- AS_ADMIN_MASTERPASSWORD=value 233
- Option Denition 234
- The Multimode Command 235
- Server Lifecycle Commands 237
- List and Status Commands 238
- Deployment Commands 239
- Version Commands 240
- Resource Management Commands 241
- Conguration Commands 243
- Proler and SSL Commands 244
- Transaction andTimer Commands 245
- User Management Commands 246
- Rules and Monitoring Commands 247
- Database Commands 247
- Web Service Commands 248
- Security Service Commands 249
- Password Commands 250
- Verify Command 251
- Custom MBean Commands 251
- Service Command 251
- Property Command 252
Relacionado con productos y manuales para Ordenadores Sun-microsystems GLASSFISH ENTERPRISE 820433510
Ordenadores Sun-microsystems 8190994 Manual de usuario
(148 paginas)
(148 paginas)
Ordenadores Sun-microsystems X4150 Manual de usuario
(82 paginas)
(82 paginas)
(22 paginas)
Ordenadores Sun-microsystems Sun Java System Content Delivery Server 5 Manual de usuario
(283 paginas)
(283 paginas)
Ordenadores Sun-microsystems Netra 120 Manual de usuario
(200 paginas)
(200 paginas)
Ordenadores Sun-microsystems X6240 Manual de usuario
(72 paginas)
(72 paginas)
© 2020, manymanuals.es. Todos los derechos reservados | 0.128 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales