Integrity Lifecycle Manager Agent Security
The Integrity Lifecycle Manager Agent provides a number of different security features to help you keep your system safe and secure.
The security environment for the Integrity Lifecycle Manager Agent has a server-based security scheme for authenticating users and authorizing access based on permissions.
A security scheme includes two elements:
• security realm
• transport protocol
The security realm is the repository where user accounts are stored. The following types of realms are supported:
• OpenLDAP server
• Microsoft Active Directory Services (ADS)
• Netscape Directory Server
• RFC 2307-based schemas on all supported servers
• Novell Directory Services
• UNIX
• Flat File
|
OpenLDAP, Netscape, RFC 2307, and Novell security realms are all defined as ldap security realms in the pre configured security scheme definitions in the security.properties file.
|
The transport protocol is the protocol used for sending passwords and data over a connection. It can be one of the following:
• send over a clear connection (clear in security.properties)
• encrypt passwords and data before sending (private in security.properties)
Each security realm uses a single authentication domain. The authentication domain is the mechanism used to confirm your credentials. The following authentication domains are supported:
• Kerberos
• LDAP (Lightweight Directory Access Protocol)
• UNIX
• Flat File
Security schemes are defined in:
installdir/config/properties/security.properties
where installdir is the path to the directory where you installed the Integrity Lifecycle Manager Agent.
Security schemes based on the supported realms are pre configured in the security.properties file. If you have special security scheme requirements, contact PTC Technical Support at the following location:
Related Links