Chapter 3. Installation 83
3.3.3 The Plug-in for Edge Server (PDPlgES)
The Access Manager Plug-in for Edge Server (PDPlgES) also runs on top of
PDWebRTE. The Access Manager Plug-in for Edge Server adds authentication
and authorization functionality to the IBM WebSphere Edge Server product. That
means IBM WebSphere Edge Server is an additional prerequisite for the
PDPlgES installation. We used pdconfig to configure PDPlgES. The
configuration utility performs the following tasks:
1. Creates registry objects for the server.
2. Adds the server to the security groups, ivacld-servers and SecurityGroup.
3. Creates an SSL certificate.
4. Obtains an SSL-signed certificate from the Tivoli Access Manager Policy
5. Configures the Edge Server caching proxy to use the Plug-in for Edge Server
by setting directives in the Edge Server caching proxy configuration file.
6. Restarts the Edge Server caching proxy process, ibmproxy.
7. Starts the Plug-in for Edge Server object space manager utility by using the
wesosm utility. This utility updates the Tivoli Access Manager object space to
create a new object space container for the Plug-in for Edge Server.
3.3.4 WebSEAL ADK (PDWebADK)
The Access Manager WebSEAL ADK contains development APIs for the Tivoli
Access Manager cross-domain authentication service (CDAS), the Tivoli Access
Manager cross-domain mapping framework (CDMF), and the Tivoli Access
Manager Password Strength Module. This ADK requires PDWebRTE as well as
the Access Manager ADK as an additional prerequisite component. This
component also requires configuration by running the pdconfig tool.
3.3.5 Plug-in for Web Servers (PDWebPI)
Access Manager Plug-in for Web Servers manages the security of your
Web-based resources by acting as the gateway between your clients and secure
Web space. The plug-in implements the security policies that protect your Web
object space. The plug-in can provide single sign-on solutions, support Web
servers running as virtual hosts, and incorporate Web application server
resources into its security policy.
Access Manager Plug-in for Web Servers depends on the operating system and
Web server in use. All Access Manager Plug-ins for Web Servers have common
components and additional Web-server-specific components, as illustrated in
Figure 3-3. The Web-server-specific components depend on the type of