© Copyright IBM Corp. 2006. All rights reserved. 247
Index
Symbols
.NET integration 47, 58
A
access control 28
access control list
see ACL
access decision information
see ADI
ACE/Server 118
ACL 33, 100
default ACLs 129
evaluation 103
policy 101
policy task 102
action bit 101
action group 111
Active Directory
domain 119
forest 119
LDAP client 76
ADI 193
administration
delegation 42
service 54
administration API 41, 43, 55
allowed-registry-substrings 93
amauditcfg 216
amldif2V6 78
AMPS 121
any-other 96, 103
Application Development Kit
installation 79
application programming interface 50
Attribute Retrieval Service
installation 84
audit
reporting 209
audit level 104
policy 110
auditing 198
operational reports 219
XML output 208
authenticated request
evaluation 103
authentication 28
audit 198
basic 115
certificate based 116
failover 117
forms-based 116
HTTP header 120
IP address 120
IP endpoint based 110
IP endpoint meethod 105
Kerberos 118
mechanisms 114
modules 115
MPA 121
network-based 104
none 127
ranking 125
re-authentication 123
step-up 104, 125
strength 104
strength policy 125
token based 118
two-factor 120
user switching 122
WebSEAL process 113
authorization 28
audit 198
database 33
database caching 44
decision information 84
flow 109
rule 34, 100, 106
rule policy 110
rules 48
service 28, 45
service architecture 52
authorization API
see aznAPI
Authorization Server 45
auditing 199
installation 78
upgrade 65
248 Certification Study Guide: IBM Tivoli Access Manager for e-business 6.0
availability 62
aznAPI 45, 51, 79, 189
credential attribute service 192
dynamic ADI retrieval services 193
entitlement service interface 191
local cache mode application 39
B
base components
framework 74
basic authentication 115
bassslcfg 77
BEA WebLogic Server
see WebLogic
C
CDAS 56, 83, 187
CDMA 121
CDMF 83, 166, 168
CDSSO 167
user synchronization 168
cdsso_key_gen 117
certificate 75, 116
revocation list 75
certification
benefits 3
checklist 5
Certified Deployment Professional 7
Common Auditing and Reporting Service 208
client 216
Common Base Event 208
configuration 10
Configuration Manager 74
container object 94
cookie
failover 117
core components 28
credential attribute service 192
credentials modification service 54
Cross Domain Mapping Framework
see CDMF
Cross Domain Single Sign-On
see CDSSO
custom authentication 182
customization 10
D
declarative security 47
default ACLs 129
default security policy 111
delegated administration 42
directory
client installation 76
partitioning 32
Directory Information Tree
see DIT
Directory Integrator 57
DIT 32
DNS mapping 143
domain
Active Directory 119
administrator 96
home 172
dynamic ADI retrieval services 193
dynamic URLs 132
dynurl.conf 132
E
EAI 56, 115, 127, 182
configuration 185
process flow 183
EAS 110, 193
e-community single sign-on 166, 169
Edge Server
Caching Proxy 40
educational resources 16
entitlement service 54
interface 191
event logging 199
EventPool
audit category 200
Everyplace Wireless Gateway 121
external authentication C API 56, 115, 127, 182,
187
external authentication interface
see EAI
external authorization service 55
see EAS
F
failover authentication 117
Federal Information Processing Standard 140-2 61
file log agent 201
filtering
Index 249
static URL 135
FIPS 140-2 61
forest
Active Directory 119
forms-based
authentication 116
single sign-on 158
G
Global Sign-On 155
group management 96
gsk7ikm 75
GSKit 60
installation 75
GSM 121
GSO
lockbox 155
H
HACMP 77
hardware acceleration for SSL 61
high availability 175
Policy Server 36
WebSEAL 37
High Availability Cluster Multiprocessing 77
home domain 172
HTTP
BA header single sign-on 159
header authentication 120
Host header 142
logging 206
Referer header 141
variables 161
I
IBM Certified Deployment Professional 7
IBM Global Security Kit
see GSKit
IBM Tivoli Configuration Manager
see Configuration Manager
IBM Tivoli Directory Integrator
see Directory Integrator
IBM WebSphere Application Server
see WebSphere Application Server
IBM WebSphere Edge Server
see Edge Server
iDEN 121
ikeyman 60, 75
import
users and groups 96
inactivity timeout 117, 123–124
inheritance 33
of security policy 100
installation 9
wizard 73
IP address
authentication 120
IP endpoint authentication method 105, 110, 126
iv-admin 96
ivmgr.kdb 78
ivmgrd.conf 93
ivmgrd-servers 96
ivrgy_tool 64
J
J2EE
application security 48
JAAS 58
Java API 58
Java application
configration 190
Java Authentication and Authorization Service
see JAAS
junction 37, 128
advanced configuration 147
cookies 138
local type 133
mapping 137
mutually authenticated 148
stateful junction 150
throttling 151
transparent path junction 146
virtual host junction 142
WebSEAL to WebSEAL junction 149
Windows file system 153
K
Kerberos 118
key management utility 60
L
LDAP
client installation 76
data format 77
250 Certification Study Guide: IBM Tivoli Access Manager for e-business 6.0
license component
installation 76
lifetime timeout 117
load balancing 37, 175
local cache mode 189
local type junction 133
log-out function 116
Lotus Domino 164
Lotus Notes
LDAP client 76
LTPA 163
M
maintenance 15
management
domain 93, 96
object space 95
Master Authentication Server 169
message event logging 226
messages 228
metadata 32
Microsoft .NET integration 47, 58
migration
authorization database 41
minimal LDAP data format 78
MPA 121
multi-domain environment 34
multiple interface capability 145
Multiplexing Proxy Agent
see MPA
N
network zone 58
network-based authentication 104
O
object space 33, 37, 48, 92, 94, 100, 111
migration 42
Plug-in for Edge Server 83
objectives
for Test 887 8
planning 8
operational reports 219
P
PAC 29, 31, 54, 182, 186
service 54
password
change 97
policy 97
strength policy 99
Password Strength Module 83
PDAcld 78
pdadmin 41
PDAuthADK 79
pdbackup 64
PDC 121
pdcacert.b64 78
pdconfig 77, 79
PDJRTE 77, 80
pdjrtecfg 80
PDlic 76
PDMgr 77
PDPlgES 83
PDProxy 79
pdproxycfg 79
PDSMS 86
PDWeb 82
pdweb.debug 230
pdweb.snoop 231
PDWebADK 83
PDWebARS 84
PDWebPI 83
PDWebRTE 82
PDWLS 85
PDWPM 80
peer-to-peer directory 32
permission 101, 111
PHS 121
pipe log agent 203
PKI
environment 75
infrastructure 60
pkmscdsso 167
pkmsdisplace 179
pkmslogout 117, 123, 179
pkmsvouchfor 171
planning 8
Plug-in for Edge Server 40
installation 83
Plug-in for Web servers 38
installation 83
policy
inheritance 100
security 99
user 98

Get Certification Study Guide: IBM Tivoli Access Manager for e-business 6.0 now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.