Configuring a GSO-enabled WebSEAL junction
Use the create command with the –b gso option to create a junction that enables GSO.
About this task
Support for GSO is configured at the junction between WebSEAL and a back-end server.
The following example illustrates
the syntax for the create command:
create -t tcp -h host-name -b gso -T resource jct-pointOptions
for setting up GSO junctions:
| Options | Description |
|---|---|
| –b gso | Specifies that GSO must provide authentication information for all requests that cross this junction. |
| –T resource/resource-group | Specifies the GSO resource or resource group. The resource name that is used as the argument to this option must exactly match the resource name as listed in the GSO database. Required for GSO junctions. |
A junction that is used in a WebSEAL or GSO solution can be made secure through SSL by applying the –t ssl option.
Always use SSL junctions with GSO to ensure encryption of credentials and all data.
Example
Junction the application resource travel-app on
host sales_svr to junction point
/sales:
create -t tcp -b gso -T travel-app -h sales_svr /salesJunction
the application resource payroll-app on host adm_svr to
junction point
/admin and make the junction secure
with SSL: create -t ssl -b gso -T payroll-app -h adm_svr /adminNote: In
this example, the –t ssl option dictates
a default port of 443.