1、First, get the LTPA token.
2、Select the LTPA token user identification field.
3、Use only the new LTPA cookie format.
4、The purpose of the LTPA token is threefold.
5、Exporting the LTPA key from the remote server.
6、The LTPA options should appear as shown in Figure 65.
7、为了验*任何LTPA,您需要上传ltpa密钥文件。
8、The ones currently implemented are basic and session-based (LTPA).
9、For our sample, the client's LTPA key and password must be Shared with the LTPA token validation module.
10、LTPA encryption keys are automatically changed at regular intervals.
11、ltpa令牌的值类型为wsst: LTPA,其中wsst定义了令牌的命名空间。
12、You can use the LTPA token to provide the single sign-on capability among servers.
13、The previous step generates cryptographic keys and a password used in LTPA token generation.
14、We're going to configure this very similarly to our LTPA set-up with some minor changes.
15、The security subsystem audits the receipt of potentially forged LTPA tokens.
16、In our case, that means making sure that the LTPA token comes from a trusted source.
17、确保这些服务器不共享相同的LTPA密钥,为这两台服务器生成两个不同的LTPA密钥。
18、Security attribute propagation also works in environments where servers are not sharing the same user registry and the LTPA keys.
19、您将使用LTPA身份验*,这需要预配置步骤。
20、一旦终端用户认*成功,WebSEAL将创建LTPA令牌cookie。
21、The LTPA keys are shared with other LTPA-enabled servers within the same domain, so the servers can validate the token and authenticate user requests instead of challenging the user.
22、LTPA身份验*的另一个方面是加密密匙共享。
23、LTPA provides a mechanism for storing user authentication information in a token that is generated when users are successfully authenticated with Connection Manager.
24、为了认*,Web应用程序以及门户都采用相同的LDAP目录和LTPA机制。
25、在标识断言场景中,这些服务器并不使用LTPA密钥来建立信任关系。
26、注意,要使用第二个选项,在发出请求时必须显式地传递LTPA 令牌。
27、要使Web服务请求者传递LTPA令牌,需要执行下列步骤
28、同一个域中其他启用LTPA的服务器共享LTPA密钥,所以这些服务器可以验*令牌和认*用户请求,而不需要询问用户。
29、The client domain gateway expects a request message with an LTPA token in a Web services security (WS-Security) header as generated by the configuration described in Part 4 of this series.
30、然而,对于存储库和标识管理,务必考虑的一个非常重要的方面是,哪一个LTPA令牌不需要加以处理。
