IBM expert Ori Pomerantz has been securing computer networks (and showing others how to do it too) since 1995. Pomerantz joined IBM in 2003 and since then, he has written classes on several IBM security products, including IBM Security zSecure™. He is also a co-author of the IBM Press publication Mainframe Basics for Security Professionals: Getting Started with RACF, 2007. In this whitepaper, "IBM Security Key Lifecycle Manager for z/OS 1.1: Operator Commands", Pomerantz helps you learn how to implement operator commands to control IBM Security Key Lifecycle Manager (ISKLM) for z/OS from the console of a mainframe. This task requires two prerequisites that you will discover:
The steps you'll learn
Pomerantz covers the following instructions in this paper:
- How WebSEAL, a proxy web server that is located between the Internet and the internal back-end servers, uses URLs, links, and junctions to enforce security policy. He defines relative, server-relative, and absolute link types.
- How WebSEAL can modify outbound links so they will work with the back-end servers.
- How WebSEAL handles absolute links and canonical names by converting the host name to an IP address and then back to a name.
- How to make WebSEAL peek in a script to modify absolute links.
- How WebSEAL uses junction cookies, the HTTP header referer, a junction mapping table, and transparent path junctions to identify the junction of inbound server-relative links.
- How WebSEAL uses virtual host junctions to identify the junction of inbound absolute links.
Explore the topics and technologies in this article:
- WebSEAL is a high performance, multi-threaded web server that applies fine-grained security policy to the Tivoli Access Manager protected web object space.
- IBM Tivoli Access Manager for e-business Version 6.1.1 provides an access control management solution to centralize network and application security policy for e-business applications.
- Explore the IBM Security Framework for cutting-edge knowledge on IT security issues.
- Start your journey to implement IT security through pragmatic, intelligent, and risk-based practices at Security on developerWorks.
- Follow developerWorks on Twitter.
- Watch developerWorks on-demand demos ranging from product installation and setup demos for beginners, to advanced functionality for experienced developers.
Get products and technologies
- Evaluate IBM products in the way that suits you best: Download a product trial, try a product online, or use a product in a cloud environment.
- Get involved in the developerWorks Community. Connect with other developerWorks users while exploring the developer-driven blogs, forums, groups, and wikis.
Dig deeper into Security on developerWorks
Get samples, articles, product docs, and community resources to help build, deploy, and manage your cloud apps.
Pragmatic, intelligent, risk-based IT Security practices.
Software development in the cloud. Register today to create a project.
Evaluate IBM software and solutions, and transform challenges into opportunities.