Configuring security for the Batch Activity Dashboard

Secure connections for the Batch Activity Dashboard must be configured through the IBM® WebSphere® Application Server Administration Console.

About this task

You must configure Secure Socket Layers (SSL) to require HTTPS for accessing the Batch Activity Dashboard. You must also configure the HTTPOnly attribute.

Procedure

  1. Log in to the WebSphere Application Server Administration Console for the application server where the Batch Activity Dashboard is installed.
  2. Configure SSL:
    1. In the navigation menu, choose Servers > Server Types > WebSphere application servers.
    2. In the Application Servers section, click the name of the server where the Batch Activity Dashboard is installed.
    3. In the Container Settings section, click Session management.
    4. Click the Enable cookies link.
    5. Ensure the Restrict cookies to HTTPS sessions option is selected, then click OK.
  3. Configure the HTTPOnly attribute:
    1. In the navigation menu, choose SecurityGlobal security.
    2. In the Authentication section, expand Web and SIP security, then choose Single sign-on (SSO).
    3. Ensure the Requires SSL option is selected, then click OK.
    4. In the navigation menu, choose Servers > Server Types > WebSphere application servers.
    5. In the Application Servers section, click the name of the server on which the Batch Activity Dashboard is installed.
    6. In the Container Settings section, expand Web Container Settings and click Web container.
    7. In the Additional Properties section, click Custom properties.
    8. Click New...
    9. In the Name field, type com.ibm.ws.webcontainer.HTTPOnlyCookies.
    10. In the Value field, type *.
    11. Click OK.
  4. Restart the server to apply the configuration changes.

Last updated: 17 May 2017