Enterprise Business Portals with IBM Tivoli Access Manager

Mastering the IBM Tivoli Access Manager is the most important factor for successfully deploying contemporary e-business solutions. Access Manager is the key element in an e-business security framework that needs thorough understanding to achieve maximum security, functionality, and performance. Based on expandable security policies for users, groups, and protected resources, the Tivoli Access Manager manages the authentication and authorization to application servers, Web sites, and virtually any other resource that requires protection, including custom-written applications.

This IBM Redbooks publication explains the planning steps and describes how to build multi-level enterprise business portals with the new Tivoli Access Manager Version 3.9. It also discusses high-availability scenarios and platform coverage for various involved components like Web servers, registries, and Access Manager management components. It shows the integration of Access Manager into the IBM WebSphere Application Server, IBM WebSphere Everyplace Suite, BEA WebLogic application server, Siebel, and other products.

This book is a valuable resource for security administrators and architects who wish to understand and implement a centralized security infrastructure.

Part 1. Tivoli Access Manager introduction
Chapter 1. Introduction to Access Manager components
Chapter 2. Access Manager Web-based architecture
Chapter 3. A basic WebSEAL scenario
Chapter 4. Increasing availability and scalability
Chapter 5. Authentication and delegation with Access Manager
Chapter 6. WebSphere application integration
Chapter 7. Access control in a distributed environment
Chapter 8. Wireless e-business
Part 2. Insurance environment
Chapter 9. Yellow Rose Insurance, Ltd.
Chapter 10. Baseline security framework
Chapter 11. Web mail integration
Chapter 12. Pay-As-You-Drive
Chapter 13. Cross-domain authentication
Part 3. Banking environment
Chapter 14. Armando Brothers Banking Corporation
Chapter 15. Protection of external Web resources
Chapter 16. Application integration
Chapter 17. Backend integration
Chapter 18. Wireless integration
Part 4. Appendixes
Appendix A. IBM WebSphere Everyplace Suite - An overview
Appendix B. Basic setup for WAP client devices
Appendix C. Access Manager and WebSphere Edge Server
Appendix D. i-Mode cookie support
Appendix E. Step-by-step instructions
Appendix F. MPA authentication flow
Appendix G. Policy Server high-availability
Appendix H. Code examples for Armando Brothers Banking Corp.
Appendix I. Additional material

• Deployment Guide Series: IBM Tivoli Access Manager for e-business V6.0, SG24-7207-01
• IBM Tivoli Access Manager for e-business, REDP-3677-01

Publish Date
12 September 2002

Rating:
(based on 3 reviews)

Rate this book

Author(s)

Axel Buecker is a Certified Consulting Software IT Specialist at the International Technical Support Organization, Austin Center. He writes extensively and teaches IBM classes worldwide on areas of Software Security Architecture. He holds a degree in Computer Science from the University of Bremen, Germany. He has 16 years of experience in a variety of areas related to Workstation and Systems Management, Network Computing, and e-Business Solutions. Before joining the ITSO in March 2000, Axel was working for IBM in Germany as a Senior IT Specialist in Software Security Architecture.

• Axel Buecker

Chris Eric Friell is a Consulting IT Specialist with IBM Norway. He has worked with IBM for 16 years and has spent the last three years on customer security projects. He holds a degree in Telecommunications from East London University. He also is a member of the Nordic Certification Board. His areas of expertise include AIX, Catia, Computer Integrated Telephony, and Tivoli Policy Director.

• Chris Eric Friell

Armando Lemos is the Information Security Officer at Maxblue Brazil (http://www.maxblue.com.br). He is a Certified Information Systems Security Professional (CISSP) with 14 years of experience in the data processing field, including IBM Mainframe and Midrange systems. He holds a degree in Computer Science from Pontificia Universidade Catolica in Sao Paulo. His areas of expertise include Hypertext Technology, Computer Security, Operating Systems, and Disaster Recovery.

• Armando Lemos

Rick McCarty is a Senior Security Architect and Practice Lead for Security with IBM Tivoli Services. Based in Austin, Texas, his current work focuses on Policy Director/Access Manager Architecture. In addition to security, Rick's background extends across a broad range of computing areas, including operating systems, artificial intelligence, TCP/IP networking, e-mail gateway systems, directory services, and high-availability. His software development experience spans approximately 17 years at IBM, Tandem Computers, and Texas Instruments. Rick received his Bachelors Degree from the University of Texas at Austin.

• Rick McCarty

Jani Perttila is an Advisory IT Specialist with IBM Finland and has been working at IBM for six years. He is MCSE and PSE certified and used to work with Microsoft software and IBM hardware. He moved to the Tivoli field about four years ago with the Tivoli IT Director. In February 2000 he was part of a team writing the redbook Managing AS/400 with Tivoli IT Director, SG24-6003, in Austin. For the last two years he has almost exclusively been working with Tivoli Policy Director. While doing this, he gained experience with LDAP, IT Security, DCE, and various other fields that relate to the product.

• Jani Perttila
• Dieter Riexinger
• Andreas Schmengler

ISBN

0738425176

IBM Form Number
SG24-6556-00

Number of pages
612