This topic describes how to create a module chain in Tivoli® Federated Identity Manager
(TFIM) V6.1.
About this task
To enable IBM® App Connect Enterprise to use
TFIM V6.1 for authorization, you need to configure TFIM to process
the security request from the message flow. To do this you need to
create a module chain in TFIM to handle the request:
Procedure
- Create a Custom module chain, and ensure
that the chain performs all the actions required (Authenticate, Map,
Authorize).
- Set the Issuer and AppliesTo properties
of the module chain, so that it is invoked for the requests from the
message flow.
When the integration node makes a request
to TFIM, the
Port Type and
Operation
Name parameters have the following values:
- PortType:<Message flow name>
- Operation "MessageFlowAccess"
The
RequestType is always set to
Validate.
- To perform authorization in a module chain, add an instance
of the Authorization module in other mode, which
allows the module parameter Web Service protected object
name to be set for the Tivoli Access
Manager (TAM) configuration.
What to do next
When you have created the module chain in TFIM, see Configuring TAM for authorization using TFIM V6.1 for information on how to configure TAM
to process authorization requests from TFIM.