User ID and password-based authentication

This section describes the information you need to establish a security context with user ID and password authentication.

To establish a security context using user ID and password-based authentication, you need the following information:

admin user ID

A Verify Identity Access user ID with the appropriate administrative authority, such as sec_master.

admin password

The password associated with the administrator user ID.

locale

The locale that is to be used for returning message data to the application. When this value is not supplied as a key parameter, the PDContext constructor uses the default locale.

domain

The Verify Identity Access policy server domain to which the user is authenticated. When this value is not supplied, the domain is obtained from the configuration file URL. When the configuration file URL does not contain domain information, the local domain associated with the Java™ Runtime Environment is used.

configuration file URL

The uniform resource locator (URL) to the configuration file created by the Java SvrSslCfg class. The URL must use the file:/// format.

Note: Do not use the svrsslcfg command-line interface to create a configuration file that is to be used by a Java application.

To create the security context, create a PDContext object as shown in Figure 1.

// Create locale for US English

Locale myLocale = new Locale("ENGLISH", "US");

/*
Create a security context using our locale. Need to supply a user ID with
administrative privileges in Verify Identity Access (like sec_master) along with
its password and a URL of the form file:/// to the configuration file created
by the SvrSslCfg class.
*/

PDContext myContext = new PDContext(myLocale,
adminName,
adminPassword,
domain,
configFileURL);

The contents of the configuration file created by the Java SvrSslCfg class is not externalized and is subject to change without notice. Users must not use the information in the configuration file directly.