BEA Using Security

Index for Using Security

administration steps

certificate-based authentication 3-12

link-level encryption 3-23

the SSL protocol 3-26

username/password authentication 3-8

authentication

certificate-based 3-9

username/password 3-5

authorized users

AUTHSRV

use with username/password authentication 3-8

building

Secure Simpapp sample application 11-2

Security sample application 11-2

certificate authorities

defined 4-9

obtaining a digital certificate for 4-9

certificate-based authentication

administration steps 3-12

C++ code example 10-17

configuration illustrated 3-14

defining JNDI environment
properties 12-6

described 3-9

development process 3-12

how it works 3-10

illustrated 3-9

Java code example 10-19

programming steps 3-12

requirements 3-11

sample UBBCONFIG file 7-13

writing the client application 10-17

cipher suites

supported by the WLE product 2-10

compiling

client applications

Secure Simpapp sample
application 11-10

server applications

Secure Simpapp sample
application 11-10

concepts

AUTHSRV 3-5

certificate-based authentication 3-9

digital certificates 3-23

link-level encryption 3-19

SSL protocol 3-23

username/password authentication 3-5

configuring

a port for SSL communications 6-2

host matching 6-3

setting session renegotiation 6-7

setting the encyrption strength 6-4

the SSL protocol

CORBA C++ ORB 6-2

CORBA Java ORB 6-2

IIOP Listener/Handler 6-2

CORBA C++ client applications

starting

Secure Simpapp sample
application 11-10

CORBA C++ ORB

defining a port for SSL
communications 6-2

enabling host matching 6-3

setting the encryption strength 6-4

CORBA Java client applications

starting

Secure Simpapp sample
application 11-10

CORBA Java ORB

defining a port for SSL
communications 6-2

enabling host matching 6-3

example of configuring the SSL
protocol 6-9

CORBA module

described 15-2

CORBA Module IDL 15-2

corbaloc URL Address format

described 10-5

corbalocs URL Address format

described 10-5

Credentials object

described 14-7

Data types

security module 15-4

deployment descriptor

specifying security roles 12-5

development process

certificate-based authentication 3-12

for security in EJBs 12-2

the SSL protocol 3-26

username/password authentication 3-7

digital certificates

certificate-based authentication 3-9

for principals 4-7

obtaining 4-6

publishing in LDAP 4-6

SSL protocol 3-23

troubleshooting 13-9

directory location of source files

Secure Simpapp sample
application 11-3, 11-5

EJBs

assigning security roles to methods 12-3

code example

certificate-based
authentication 12-11

username/password
authentication 12-11

depoyment descriptor 12-5

description of security 12-2

how authentication works 12-2

property keys for security 12-8

specifying certificate-based authentication 12-8

specifying username/password authentication 12-8

steps for adding security to 12-2

using URL Address formats 12-7

encryption

setting encryption strength 6-4

values 6-5

environment variables

APPDIR 11-8

JAVA_HOME 11-7

JDKDIR 11-8

Secure Simpapp sample application 11-7

TOBJADDR 11-8

TUXCONFIG 11-8

TUXDIR 11-7

file protections

Secure Simpapp sample application 11-7

host matching

enabling 6-3

values 6-4

IIOP Listener/Handler

configuring session renegotiation 6-7

defining a port for SSL communications 6-2

enabling host matching 6-3

SEC_PRINCIPAL_LOCATION parameter 6-8

SEC_PRINCIPAL_NAME parameter 6-8

SEC_PRINCIPAL_PASSVAR parameter 6-8

setting security parameters 6-7

setting the encryption strength 6-4

use with certificate-based
authentication 3-9

use with the SSL protocol 3-23

invocation_options_required method

C++ code example 10-21

described 10-20

Java code example 10-22

ISL command

configuring session renegotiation 6-7

enabling host matching 6-4

example 6-8

setting the encryption strength 6-4

specifying a port for SSL communications 6-2

JAVA_HOME parameter

Secure Simpapp sample application 11-7

JDKDIR parameter

setenv file 11-8

JNDI environment properties

for certificate-based authentication 12-6

for username/password authentication 12-6

WLEContext.INITIAL_CONTEXT_
FACTORY 12-6

WLEContext.PROVIDER_URL 12-7

WLEContext.SECURITY_
AUTHENTICATION 12-8

JNDI factory

use in authentication 12-2

joint client/server applications

using the SSL protocol 6-3

LDAP directory service

directory structure 4-4

search filter file 4-5

use with certificate-based
authentication 3-11

use with the SSL protocol 3-26

use with WLE security 4-3

LDAP Search Filter file

modifying 4-5

stanzas used by SSL protocol 4-6

stanzas used for certificate-based authentication 4-6

link-level encryption

administration steps 3-23

described 3-19

development process 3-23

makefile

Secure Simpapp sample application 11-6

OMG IDL

CORBA module 15-2

Security Level 2 module 15-7

Security module 15-4

SecurityLevel 1 module 15-6

Peer Rules file

PrincipalAuthenticator object

certificate-based authentication 14-5

described 14-4

using in client applications 10-6

private keys

protocols

link-level encryption 3-19

SSL 3-23

runme command

description 11-10

files generated by 11-11, 11-12

SEC_PRINCIPAL_LOCTION parameter

defined 6-8

SEC_PRINCIPAL_NAME parameter

defined 6-8

SEC_PRINCIPAL_PASSVAR parameter

defined 6-8

Secure Simpapp sample application

building 11-2

changing protection on files 11-7

compiling the Java client
application 11-10

compiling the Java server
application 11-10

description 10-16

development process 10-16

illustrated 10-16

loading the UBBCONFIG file 11-10

locations of files 11-3

required environment variables 11-7

runme command 11-10

setting up the work directory 11-3

source files 11-3, 11-5

starting the Java client application 11-15

starting the Java server application 11-15

using the client applications 11-15

Security Level 2 module

described 15-7

Security module

described 15-4

SECURITY parameter

defining in UBBCONFIG file 7-6

setting for username/password authentication 3-8

values for 7-6

security roles

assigning to EJB methods 12-3

defining in deployment descriptor 12-5

syntax rules 12-5

Security sample application

description 10-6

illustrated 10-7

location of files 10-7

PrincipalAuthenticator object 10-6

SecurityCurrent object 10-6

SecurityCurrent object

described 14-8

using in client applications 10-6

SecurityLevel 1 module

described 15-6

source files

Secure Simpapp sample
application 11-3, 11-5

SSL parameters

SEC_PRINCIPAL_LOCATION 3-27

SEC_PRINCIPAL_NAME 3-27

SEC_PRINCIPAL_PASSVAR 3-27

SSL protocol

administration steps 3-26

configuration illustrated 3-27

described 3-23

development process 3-26

how it works 3-24

illustrated 3-23

requirements 3-26

support

TimeBase module

described 15-2

TimeBase Module IDL 15-2

tmboot command

Secure Simpapp sample application 11-15

tmloadcf command

Secure Simpapp sample
application 11-10

Tobj module

described 15-7

tpgrpadd command

defining security groups 3-8, 7-3

tpusradd command

defining users for security 3-8, 7-3

troubleshooting

bootstrapping problems 13-6

callback objects 13-9

certificate-based authentication problems 13-5

configuration problems 13-8

digital certificates 13-9

IIOP Listener/Handler startup
problems 13-7

ORB initialization problems 13-3

tracing 13-1

Ulog file 13-1

username/password
authentication problems 13-4

Trusted Certificate Authority file

described 4-9

example 4-9

TUXCONFIG parameter

setenv file 11-8

TUXDIR parameter

Secure Simpapp sample application 11-7

UBBCONFIG 3-12

UBBCONFIG file

configuring the authentication server 7-2

defining a security level 7-5

defining link-level encryption 3-23

defining security parameters for the IIOP Listener/Handler 6-8

example of certificate-based authentication 7-13

example of username/password authentication 7-9

link-level encryption 3-23

Secure Simpapp sample
application 11-10

username/password authentication 3-8

URL Address formats

certifcate-based authentication 3-10

the SSL protocol 3-24

username/password authentication 3-34

using with EJBs 12-7

username/password authentication

administration steps 3-7

application password 3-5

C++ example

SecurityLevel2 PrincipalAuthenticator
10-9

Tobj PrincipalAuthenticator 10-12

defining JNDI environment
properties 12-6

defining users and groups 3-8

described 3-5

development process 3-7

how it works 3-5

illustrated 3-5

interfaces explained 10-8

Java example

SecurityLevel2 PrincipalAuthenticator
10-10

Tobj PrincipalAuthenticator 10-14

programming steps 3-7

sample UBBCONFIG file 7-9

system authentication 3-5

writing the client application 10-7

WLE domain

adding security to 10-6

WLE Security model

accessing objects 14-3

administrative control 14-3

authenticating principals 14-2

components 14-3

Credentials object 14-7

PrincipalAuthenticator object 14-4

SecurityCurrent object 14-8

described 14-2

WLE Security Pack

described 4-2

use with certificate-based authentication 3-11

use with SSL protocol 3-26

WLEContext.INITIAL_CONTEXT
_FACTORY property 12-6

WLEContext.PROVIDER_URL property 12-7

WLEContext.SECURITY_
AUTHENTICATION property 12-