ASG
IBM
Zystems
Cressida
Icon
Netflexity
 
  MQSeries.net
Search  Search       Tech Exchange      Education      Certifications      Library      Info Center      SupportPacs      LinkedIn  Search  Search                                                                   FAQ  FAQ   Usergroups  Usergroups
 
Register  ::  Log in Log in to check your private messages
 
RSS Feed - WebSphere MQ Support RSS Feed - Message Broker Support

MQSeries.net Forum Index » WebSphere Message Broker (ACE) Support » Configuring access to TAM from WMB

Post new topic  Reply to topic
 Configuring access to TAM from WMB « View previous topic :: View next topic » 
Author Message
brokerDev
PostPosted: Wed Dec 12, 2007 3:17 am    Post subject: Configuring access to TAM from WMB Reply with quote

Acolyte

Joined: 21 Jun 2006
Posts: 53
Hi,

As part of a pilot project, I have been tasked with devising a basic flow within broker that takes an incoming message from process server, extracts the userid and operation and then makes a call TAM to see if that userid is allowed to access that operation.

I think what I need is to use make calls to the TAM API from within a Java compute node. I think I also need to perform some configuration on the TAM server/broker box?

We are using Windows XP and WMB 6.0.2.

Would appreciate any tips or links to any documents on how I can set this up.

Thanks
Back to top
View user's profile Send private message
AndreasMartens
PostPosted: Wed Dec 12, 2007 5:45 am    Post subject: Probably not a lot of help, but... Reply with quote

Acolyte

Joined: 30 Jan 2006
Posts: 65
Location: Hursley, UK
In broker 6.1 we're able to extract the identity (username in the case of MQ) and authenticate, map or authorize against TFIM or LDAP. Where TFIM can call down to TAM to do the hard work.

cheers,
Andreas
Back to top
View user's profile Send private message MSN Messenger
brokerDev
PostPosted: Wed Dec 12, 2007 7:45 am    Post subject: Reply with quote

Acolyte

Joined: 21 Jun 2006
Posts: 53
Hi Andreas,

Thanks for the reply.....however we are using broker 6.0.2 and Tivoli Directory Server 5.2
Back to top
View user's profile Send private message
AndreasMartens
PostPosted: Wed Dec 12, 2007 8:56 am    Post subject: Tivoli Directory Server Reply with quote

Acolyte

Joined: 30 Jan 2006
Posts: 65
Location: Hursley, UK
I understand. One thing to note is that if you are using Tivoli Directory Server I would recommend using LDAP calls to do authentication and authorization. In this way you could use JNDI to do the hard work for you, a bind against the directory with a username and password is equivalent to an authentication mechanism and checking for group membership is a good way for an authorization lookup... If you did it this way you'd find future migration to 6.1 strikingly easy
Back to top
View user's profile Send private message MSN Messenger
Display posts from previous:   
Post new topic  Reply to topic Page 1 of 1

MQSeries.net Forum Index » WebSphere Message Broker (ACE) Support » Configuring access to TAM from WMB
Jump to:  



You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Protected by Anti-Spam ACP
  
 


Theme by Dustin Baccetti
Powered by phpBB © 2001, 2002 phpBB Group

Copyright © MQSeries.net. All rights reserved.