If you use WebSphere® Application
Server and
plan to enforce login security when users administer the Watson Content Analytics system or access collections,
you must configure global security in WebSphere Application
Server. You must also configure
security information in the Watson Content Analytics configuration
files, administration console, and applications.
Procedure
To enable security in WebSphere Application
Server:
- Decide which type of user registry you want to use for
authenticating users. For example, many WebSphere Application
Server administrators choose to
use the Lightweight Directory Access Protocol (LDAP) user registry.
- In the Watson Content Analytics administration
console, click Security to open the Security dashboard
and assign at least one of the users in the WebSphere Application
Server user registry to the master
administrator role.
Alternatively, add the default Watson Content Analytics administrator ID to the WebSphere Application
Server user registry.
- If you enable global security after Watson Content Analytics is installed, you must
provide the system with the WebSphere Application
Server user
ID and password. To provide this information, you use the eschangewaspw command.
Follow the procedure appropriate for how you installed Watson Content Analytics, either on a single server
or in a distributed server configuration.
- In WebSphere Application
Server,
configure support for single sign-on (SSO) authentication by configuring
a Lightweight Third-Party Authentication (LTPA) key file. You must
verify that LTPA SSO authentication is correctly configured.
- Enable security when you create collections and configure
crawlers that support SSO authentication. Different crawlers
have different setup requirements. Review the crawler requirements
for supporting security and complete the tasks appropriate for the
types of documents that you plan to include in collections.
- Configure the identity management component to enable SSO
for secure search of specific data sources.
