How to make Tam WebSEAL a reverse proxy server access to the IBM BPM V8 Business

Introduction to IBM Business Process manager V8 and Tivoli Access manager WebSEAL

IBM Business Process Manager V8 provides the tools and powerful integration platform needed to model, assemble, deploy, and manage business processes, providing a more complete solution for enterprise development to execute business processes.

IBM Tivoli Access Manager WebSEAL is a reverse proxy security server component that can be used as a front-end system for any Web application server or Web server to manage and protect web-based information and resources

The topology is shown in Figure 1, with the front end being the Tivoli Access Manager WebSEAL Server, and the backend is the Business Process Manager server. This article defaults to the two sets of servers have been installed, need to do is a series of configuration steps so that both can work together.

Figure 1. Business Process Manager and WebSEAL topology

Configure the user registry for Business Process Manager and Tivoli Access Manager (Users Registry)

This article uses IBM's LDAP server to do the user registry.

Add the users you need in the LDAP of Tivoli Access Manager

Adding system users to Business Process Manager

Table 1. Business Process Manager's system users

More Wonderful content: http://www.bianceng.cnhttp://www.bianceng.cn/Servers/proxy/

As shown in table 1, Business process Manager has a series of system users installed, and in order for Business process Manager to use the same LDAP user registry as Tivoli Access Manager, these users must be Created beforehand in the user's registry of Tivoli Access Manager.

Log on to the machine on the Tivoli Access Manager and open the Pdadmin command line tool by executing the following command

Pdadmin-a Sec_master-p SmartWay

Note: Sec_master is a Tivoli Access Manager Admin user, SmartWay is a password

The syntax for creating a user in the Pdadmin command line tool is as follows:

Listing 1. Creating a user's syntax

User Create [–gsouser] [–no-password-policy] user_name DN cn sn Password [groups] User modify user_name Account-val ID {yes|no} user modify user_name Password-valid {yes|no} create Business Process Manager user user create ADM by executing the following command In "cn=admin,secauthority=default" admin admin Admin user Modify Admin password-valid Yes user Modify admin Account-va Lid Yes user Create tw_admin "cn=tw_admin,secauthority=default" tw_admin tw_admin Admin user Modify Tw_admin password-  Valid Yes user Modify Tw_admin account-valid Yes user create Tw_user "Cn=tw_user,secauthority=default" Tw_user tw_user Admin user Modify Tw_user password-valid Yes user modify Tw_user account-valid Yes user create Tw_author "Cn=tw_aut" Hor,secauthority=default "Tw_author tw_author Admin user Modify Tw_author password-valid Yes user modify Tw_author acc
                                           Ount-valid Yes user create Tw_portal_admin "Cn=tw_portal_admin,secauthority=default" Tw_portal_adminTw_portal_admin Admin user Modify Tw_portal_admin password-valid Yes user modify tw_portal_admin account-valid Yes U SER Create Tw_runtime_server "Cn=tw_runtime_server,secauthority=default" Tw_run Time_server tw_runtime_server Admin user Modify Tw_runtime_server password-valid Yes user modify Tw_runtime_server acc
                                           Ount-valid Yes user create Tw_webservice "Cn=tw_webservice,secauthority=default" Tw_webservice tw_webservice Admin user Modify Tw_webservice password-valid Yes user modify Tw_webservice account-v Alid Yes