Main

December 04, 2007

Security Handbook for WebSphere Application Server

[This article is sponsored by Peningo Systems, Inc., a provider of WebSphere Consulting Services on a nationwide basis. For more information on Peningo Systems, please go to the Peningo WebSphere Consultants page ]

IBM has released a Redbook titled “IBM WebSphere Application Server V6.1 Security Handbook”, which is part of the IBM WebSphere V6.1 series. The Redbook focuses on security and security-related topics and provides technical details to design and implement secure solutions with WebSphere.

We at Peningo Systems strongly recommend this RedBook for any WebSphere Consultant / WebSphere Architect / WebSphere Developer who are involved in designing, developing, and deploying secure e-business applications using IBM WebSphere Application Server V6.1.

This Book Consists of 4 Parts:

  • Part 1 discusses security for the application server and its components, including enterprise applications. Note that global security has now become known as administrative security and application security. You find essential information on how to secure Web and EJB applications and how to develop a Java client using security.
  • Part 2 introduces additional components from the enterprise environment and discusses security beyond the application server.
  • External components include third-party security servers, messaging clients and servers, and database servers.
  • Part 3 is a short introduction to development environment security. Here you can read about guidelines and best practices that are applicable to a secure development environment.
  • Part 4 provides additional information related to chapters in the previous parts.


The following is the Table of Contents for this Redbook Draft:

 

  • Part 1. Application server security
    Chapter 1. Introduction
    Chapter 2. Configuring the user registry
    Chapter 3. Administrative security
    Chapter 4. SSL administration
    Chapter 5. JAAS for authentication in WebSphere Application Server
    Chapter 6. Application security
    Chapter 7. Securing a Web application
    Chapter 8. Securing an EJB application
    Chapter 9. Client security
    Chapter 10. Securing the service integration bus
  • Part 2. Extending security beyond the Application Server
    Chapter 11. Security attribute propagation
    Chapter 12. Securing a WebSphere application using Tivoli Access Manager
    Chapter 13. Trust Association Interceptors and third party software integration
    Chapter 14. Externalizing authorization with JACC
    Chapter 15. Web services security
    Chapter 16. Securing access to WebSphere MQ
    Chapter 17. J2EE Connector security
    Chapter 18. Securing the database connection
  • Part 3. Development environment
    Chapter 19. Development environment security
  • Appendix A. Additional configurations
    Appendix B. Additional material

To view and download the RedBook Draft in PDF, please go to the link below:

The IBM WebSphere Application Server V6.1 Security Handbook

If you are an "End Client" looking for a WebSphere Consulting Service provider to support your WebSphere Applications, Peningo Systems provides Consultants with expertise in many areas including:

WebSphere Portal

WebSphere Commerce

WebSphere Eclipse Development

WebSphere MQ

System Security Architecture

Tivoli Access Manager

Tivoli Identity Manager

DB2 – UDB, 

SAP

Remedy

Peregrine / HP Openview AssetCenter and ServiceCenter

J2EE based systems architecture and development.

To see Peningo Systems areas of expertise, please go to the Peningo Technical Areas page or go to the Peningo WebSphere Consultants page.

  To see Peningo's other Blogs please go to

 Peningo's Blog

The Peningo Opinion Blog 

Add to Technorati Favorites

October 29, 2007

Extending WebSphere MQ Applications with Python

[This article is sponsored by Peningo Systems, Inc., a provider of WebSphere Consulting Services on a nationwide basis. For more information on Peningo Systems, please go to the Peningo WebSphere Consultants page ]

IBM has recently release an article titled “Using Python in WebSphere MQ Applications” .  We at Peningo Systems recommend this article to any WebSphere Consultant / WebSphere MQ Developer / Python developer looking to integrate Python code with the MQ Applications.

This article shows how to use and compile the Python MQ Interface ( PyMQI ). With PyMQI developers can use the powerful Python language with WebSphere MQ tools and solutions, thus giving the benefits of Python to all WebSphere MQ developers. Python is a dynamic object-oriented programming language that can be used for many kinds of software development. It offers strong support for integration with other languages and tools, comes with extensive standard libraries, and can be learned in a few days. Many Python programmers report substantial productivity gains and feel the language encourages the development of higher quality, more maintainable code.

The Python MQ Interface ( PyMQI ) is an open-source Python extension library for IBM’s WebSphere MQ. PyMQI extends the MQI library by providing an easy-to-use Python interface. PyMQI  has a low-level library written in C to access the MQI C-library, and a high-level object-oriented interface, on top of low-level library, for Python programmers.  With the Python MQ Interface, you can use the Python language to develop utilities and programs for WebSphere MQ.

To view the IBM Article, please click the link below:

http://www.ibm.com/developerworks/websphere/library/techarticles/0708_salkosuo/0708_salkosuo.html

To go to the PyMQI Homepage, please click the link below:

 

http://pymqi.sourceforge.net/

 

If you are an "End Client" looking for a WebSphere Consulting Service provider to support your WebSphere Applications, Peningo Systems provides Consultants with expertise in many areas including:

WebSphere Portal

WebSphere Commerce

WebSphere Eclipse Development

WebSphere MQ

System Security Architecture

Tivoli Access Manager

Tivoli Identity Manager

DB2 – UDB, 

SAP

Remedy

Peregrine / HP Openview AssetCenter and ServiceCenter

J2EE based systems architecture and development.

To see Peningo Systems areas of expertise, please go to the Peningo Technical Areas page or go to the Peningo WebSphere Consultants page.

  To see Peningo's other Blogs please go to

 Peningo's Blog

The Peningo Opinion Blog 

 

 

October 14, 2007

Using WebSphere Portlet Factory to develop Portal Applications

[This article is sponsored by Peningo Systems, Inc., a provider of WebSphere Consulting Services on a nationwide basis. For more information on Peningo Systems, please go to the Peningo WebSphere Consultants page ]

IBM has recently release a RedBook Draft titled “Portal Application Development using WebSphere Portlet Factory” .  We at Peningo Systems strongly recommend this RedBook for any WebSphere Consultant / WebSphere Developer developing portlets.

The WebSphere Portlet Factory is a tool for rapid building of portlets on top of a service-oriented architecture (SOA). Developers are able to quickly and easily leverage their company's core assets, automatically assembling them into custom, high-value portlets.


Within this Redbook, IBM shows specific techniques and a best practices approach for developing portlets using WebSphere Portlet Factory. Using a fictitious company scenario, IBM demonstrates how to build a Customer Self Service and Customer Representative application.

 

Within this context, IBM covers the following topics:

  • Installing and configuring the Portlet Factory development Environment,
  • How to create and consume data services from SQL, Domino and a Web Service,
  • Step by step guidance for creating the portlets and enabling inter-portlet communication,
  • Advanced UI design techniques, including the use of AJAX for type ahead functionality and working with the DoJo Builders,
  • Enabling the use of Profiling
  • Deployment Production Considerations, and
  • Troubleshooting and Debugging techniques

The following is a Table of Contents for this RedBook Draft:

Chapter 1. Introduction
Chapter 2. Scenario Introduction
Chapter 3. Creating Projects
Chapter 4. Data Services: overview and interface definition
Chapter 5. Creating Data Services: access to back-end systems
Chapter 6. Creating Portlets - Making it work
Chapter 7. Creating Portlets - Designing the UI
Chapter 8. Enabling Portlet Communication
Chapter 9. Customizing the application using profiling
Chapter 10. Creating the Go Shopping Portlet
Chapter 11. Production Deployment
Chapter 12. Troubleshooting, Debugging & Error Handling
Appendix A. Setting up the Environment
Appendix B. Creating a web service using WebSphere Portlet Factory
Appendix C. Remote Deployment
Appendix D. Configuring the RAD Unified Test Environment
Appendix E. Considerations for WAS CE
Appendix F. Execution Processing
Appendix G. Source Control and Team Development
Appendix H. Additional material

To view and download the RedBook Draft in PDF, please go to the link below:

http://www.redbooks.ibm.com/redpieces/pdfs/sg247525.pdf

If you are an "End Client" looking for a WebSphere Consulting Service provider to support your WebSphere Applications, Peningo Systems provides Consultants with expertise in many areas including:

To see Peningo Systems areas of expertise, please go to the Peningo Technical Areas page or go to the Peningo WebSphere Consultants page.

  To see Peningo's other Blogs please go to

 Peningo's Blog

The Peningo Opinion Blog 

 


Digg!

August 25, 2007

Configuring WebSphere Portal to use Tivoli Access Manager

The "IBM WebSphere Portal Tivoli Access Manager Configuration Wizard" is an application that assists Portal Administrators through the task of configuring WebSphere Portal to use Tivoli Access Manager. With this tool, the WebSphere Portal Administrator can automate the following:
  • Setup the Trust Association Interceptor (TAI) in WebSphere Application Server
  • Configuring the WebSEAL junction (TCP or SSL options)
  • Setup the Tivoli Access Manager (TAM) Credential Vault adapter
  • Configure the Tivoli Access Manager for Authorization, or Externalization of Portal roles
  • Configure the JAAS login modules
  • Provide Backups to the files that are modified during the configuration
The IBM Developer Works is a great web site that offers a wealth of information regarding IBM Application information, troubleshooting issues, tutorials, etc.. To see more details regarding implementing the IBM WebSphere Portal Tivoli Access Manager Configuration Wizard, please go to the following link at IBM:

http://www.ibm.com/developerworks/websphere/zones/portal/catalog/doc/1wp10004g/

If you are an "End Client" looking for WebSphere Consulting Service providers to support your WebSphere Applications, Peningo Systems provides Consultants with expertise in many areas including:

To see Peningo Systems areas of expertise, please go to the Peningo Technical Areas page or go to the Peningo Websphere Consultants page.

 

Technorati Profile

August 15, 2007

The Peningo Websphere Consultants Blog

Welcome to the Peningo Websphere Consultants Blog.  This Blog is intended to support the issues that affect the Websphere Consulting market, as well as, follow Websphere product related news and issues.
Hang the Outsourcer of Websphere IT Services out to Dry

Peningo Systems has identified that the WebSphere technical services industry is moving in a direction that we at Peningo do not want to follow.  Our reasons for rejecting such a direction are:

Suppliers of WebSphere IT services have been organized into Networks of organizations or Cartels, with the purpose to control and enforce a reduction in the rates of individual consultants.  On the one side the Networks hopes to control demand and through the Networks force the rate reduction that will allow them a larger Margin.


The "End Client" recipient of the WebSphere Consulting Services continues to pay an ever increasing rate for such services, while the quality of the Consultants being delivered to them, declines; as the more “experienced Websphere Consultants” refuse to participate in such equalitarian scheme.

Over the years, we at Peningo Systems have seen that the rates for the WebSphere Consultants have been reduced or become stagnant. As the Networks of these “Prestigious” WebSphere Consulting Service providers have increased needs to provide WebSphere Services, they seek "offshore" resources or lower paid H1-B / L-1 based resources to maintain their margins.  The more “Experienced Consultants” are not part of the equation, since their rate requirements would not fit into the “Prestigious” WebSphere Consulting Service provider’s lofty profit margin.  These "offshore and H1-B / L-1 resources" generally are not in tune with the needs of the American Business Community.

We invite your efforts to participate as a Commenter on this Blog in order to bring to the attention of the "End Client" the benefits of contracting direct, which will result in increase rate for the Consultant and lower billing rate to the "End Client”.

Peningo Systems supports and provides Consultants with expertise in many areas including:

To see Peningo Systems areas of expertise, please go to the Peningo Technical Areas page or go to the Peningo Websphere Consultants page.

Technorati Profile