Upload
vishvas-tiwari
View
232
Download
0
Embed Size (px)
Citation preview
8/2/2019 Security in Web Methods
1/20
30 October 2009
Security in webMethods
8/2/2019 Security in Web Methods
2/20
230 October 2009
Managing the Server Security
Securing Access
Securing Data
Control Mechanisms
8/2/2019 Security in Web Methods
3/20
330 October 2009
Contd
Control who can configure and manage the server
Control who can use webMethods Developer to connect to the server
Digitally sign documents and verify digital signatures
pub.pki.pkcs7:sign
pub.pki.pkcs7:verify
8/2/2019 Security in Web Methods
4/20
430 October 2009
Public Key Infrastructure (PKI)
PKI Profiles
Stored in File system as .epf files
HSM Devices
8/2/2019 Security in Web Methods
5/20
530 October 2009
PKI Profile Checking Process
A client running outside your enterprise sends a signed and/or encrypted
document to an Integration Server running inside your enterprise
The Integration Server passes the document to an application
Application calls the pub.pki services to access the PKI profiles
The server verifies that the user associated with the request is a member of the
PKI profiles Execute ACL
8/2/2019 Security in Web Methods
6/20
630 October 2009
PKI Profile Checking Process Contd..
The server decrypts and verifies the document using the keys and certificates inPKI Profile
The PKI profile resides either in the file system, or on an HSM device
The application processes the document and sends a response to the client
8/2/2019 Security in Web Methods
7/20
730 October 2009
Creating a PKI Profile
There are two main steps to setting up a PKI profile
Create a PKI profile
Create an alias for the PKI profile in the Integration Server
8/2/2019 Security in Web Methods
8/20
830 October 2009
Contd..
Open the Integration Server Administrator
In the Adapters menu of the Navigation panel, click PKI
In the PKI menu, click Profile Management
Click Create PKI Profile
8/2/2019 Security in Web Methods
9/20
930 October 2009
8/2/2019 Security in Web Methods
10/20
8/2/2019 Security in Web Methods
11/20
1130 October 2009
Setting up Administrators
To grant administrative privileges to a user
Open the Integration Server Administrator if it is not already open
In the Security menu of the Navigation panel, click User Management.
Users in this Group
Remaining Users
In Groups area of the screen, in the Select group list, select Administrators
In the Remaining Users list, select (highlight) the user or users to whom you
want to grant administrator privileges
The server moves the selected users to the Users in this Group list
Click Save Changes.
8/2/2019 Security in Web Methods
12/20
1230 October 2009
8/2/2019 Security in Web Methods
13/20
1330 October 2009
Setting up Developers
To grant developer privileges to a user
Open the Integration Server Administrator if it is not already open
In the Security menu of the Navigation panel, click User Management.
Users in this Group
Remaining Users
In Groups area of the screen, in the Select group list, select Developers
In the Remaining Users list, select (highlight) the user or users to whom you
want to grant developer privileges
The server moves the selected users to the Users in this Group list
Click Save Changes.
8/2/2019 Security in Web Methods
14/20
1430 October 2009
8/2/2019 Security in Web Methods
15/20
1530 October 2009
To enable a user:
Open the Integration Server Administrator
In the Security menu of the Navigation panel, click User Management
Click Enable and Disable Users
In the Disabled Users list select the user or users you want to enable
At the bottom of the Disabled Users area of the screen Click
The server moves the selected users to the Enabled Users area of the screen
Click Save Changes
Enabling & Disabling User Accounts
8/2/2019 Security in Web Methods
16/20
1630 October 2009
8/2/2019 Security in Web Methods
17/20
1730 October 2009
To disable a user:
Open the Integration Server Administrator
In the Security menu of the Navigation panel, click User Management
Click Enable and Disable Users
In the Enabled Users list select the user or users you want to disable
At the bottom of the Disabled Users area of the screen Click
The server moves the selected users to the Disabled Users area of the screen
Click Save Changes
Contd..
8/2/2019 Security in Web Methods
18/20
1830 October 2009
8/2/2019 Security in Web Methods
19/20
1930 October 2009
Defining Groups
Administrator privileges
Replicator privileges
Developer privileges
Privileges to invoke a service
8/2/2019 Security in Web Methods
20/20
2030 October 2009
THANK YOU