Configuring security for WebSphere Application Server and its applications

Security for Data warehousing in Db2 is controlled by WebSphere® Application Server. If you installed WebSphere Application Server with the warehouse product, you already configured security during the installation. However, if you chose instead to use an existing copy of WebSphere Application Server, you need to configure security after the installation.

Before you begin

Log in to WebSphere Application Server. For example:
  • On Windows: From the Start menu, click All Programs > IBM WebSphere > Application Server Version > Profiles > AppSrv01 > Administrative console.
  • From a Web browser, type: http://host_name:9060/ibm/console
Tip: If port number 9060 is already taken, you can find the default port number in the portdef.props file in the following location: WebSphere\AppServer\profiles\AppSrv01\properties. The default port number for WebSphere Application Server is specified by the WC_adminhost property.

If security is already enabled, you must log in with administrator authority for WebSphere Application Server. Otherwise, you can log in without administrator authority and without a password.

About this task

In this task you select the local operating system as the security realm, and then you configure and enable global security.

Procedure

To configure security for WebSphere Application Server and its applications:

  1. Configure the user account repository to use the local operating system as the security realm.
    1. Open the Global Security page, click Security > Global security
    2. From the Available realm definition menu, select Local operating system, and then click Configure.
    3. In the Primary administrative user name field, type a user name to be assigned administrative privileges for WebSphere Application Server. The user name must be one that is defined in the operating system where WebSphere Application Server is installed.
    4. Click OK.
    5. Click Set as current, and then click Apply to validate the changes.
  2. On the Global Security panel, configure and enable global security.
    1. Select the Enable administrative security check box.
    2. Select the Enable application security check box.
    3. Clear the Use Java 2 security to restrict application access to local resources check box.
    4. Click Apply.
  3. Save the configuration settings for the server to use when it is restarted.
    1. Click Save to save directly to the master configuration.
    2. Restart WebSphere Application Server, and then log back in.

What to do next

Security is now configured for WebSphere Application Server and its applications. If for any reason you stop WebSphere Application Server, you must specify an administrative user name and password by running the following command:
  • On Linux and UNIX: opt/IBM/WebSphere/AppServer/profiles/AppSrv01/bin/stopServer.sh server1 -user user_name -password password
  • On Windows: ISWarehouse\appServer\profiles\AppSrv01\bin\stopServer.bat server1 -user user_name -password password
Alternatively, you can open the soap.client.props file in the profile_root/properties directory and edit the com.ibm.SOAP.loginUserid and com.ibm.SOAP.loginPassword properties.

You are ready to configure user access to the Warehouse Administration Console.

Configuring user access with WebSphere Application Server

Parent topic: Configuring data warehousing in Db2
Related information:
Starting and logging off the Administrative Console (WebSphere Application Server V8)
Starting and logging off the Administrative Console (WebSphere Application Server V7)
Securing applications and their environment (WebSphere Application Server V8)
Securing applications and their environment (WebSphere Application Server V7)

Feedback