Scenario 4: Server-side identity assertion.
场景4:服务器端标识断言。
Configure identity assertion for the target server.
为目标服务器配置标识断言。
Configure identity assertion for the sending server.
为发送服务器配置标识断言。
Scenario 3: Identity assertion with trust validation.
场景3:使用信任验证进行标识断言。
Appendix: Identity assertion features in data sources.
附录:数据源中的身份断言功能。
For this to work, we are going to configure CSIv2 identity assertion.
为了实现此功能,我们将配置CSIv 2标识断言。
Identity assertion using custom token object with inbound identity mapping.
通过入站标识映射使用自定义的令牌对象进行标识断言。
Identity assertion using custom token object and server-side identity assertion.
使用自定义的令牌对象和服务器端标识断言进行标识断言。
Obviously servers in cell B trust cell A as they accept identity assertion from it.
显然,计算单元B中服务器从计算单元 A 中接受标识断言,因此是信任计算单元 A 的。
On the target server, configure a new application login to handle the identity assertion.
在目标服务器中,配置一个新的应用程序登录以处理标识断言。
On the sending server, configure a new application login to handle the identity assertion.
在发送服务器中,配置一个新的应用程序登录以处理标识断言。
Add the WebSphere Application Server identity assertion login module as the second module.
添加WebSphereApplicationServer标识断言登录模块作为第二个模块。
In the identity assertion scenario, the servers are not using LTPA keys to establish trust.
在标识断言场景中,这些服务器并不使用LTPA密钥来建立信任关系。
There has to be a mechanism to transmit the actual user identity, such as identity assertion.
必须有一种机制来传输实际用户标识,如标识断言。
The client gateway propagates the client principal using identity assertion to the service gateway.
客户端网关使用服务网关的身份断言来传播客户端主体。
The application code invokes a customer application login configuration for the server-side identity assertion.
应用程序代码调用客户应用程序登录配置进行服务器端标识断言。
The identity assertion feature has to be enabled and configured on both application servers (sending and target).
必须在两台应用服务器(发送和目标服务器)中启用和配置标识断言特性。
The Identity Assertion feature must be enabled and configured on both application servers (sending and target).
必须在两台应用服务器(发送和目标服务器)中启用和配置标识断言特性。
For servers in cell B to accept the identity assertion, the upstream server in cell a must authenticate itself first.
对于计算单元b中接受标识断言的服务器,计算单元a中的上游服务器必须首先对自身进行身份验证。
As a result, you can achieve end-to-end identity assertion in a trusted environment with or without re-authentication.
由此,您可以在可信的环境中实现端到端的身份断言(identity assertion),不一定需要重新验证。
From the programming model point of view, this scenario is the same as scenario 3 (Identity assertion with trust validation).
从编程模型的角度来看,这个场景与场景3(使用信用验证进行标识断言)相同。
This paper introduces the developing process of a custom SAML identity assertion provider and its realization in detail.
文章详细介绍了制作自定义SAML身份声明提供程序的实现过程。
The identity assertion object on the remote data source defines the trust attributes for establishing a trusted outbound connection.
远程数据源上的身份断言对象为建立可信出站连接定义信任属性。
While identity assertion (see previous scenarios) can change identity, it can only make the change within the same user registry.
尽管标识断言(请参见前面的场景)可以更改标识,但是它只能够在相同的用户注册中心中进行更改。
Once the authentication is complete, the receiving server will verify that the upstream server is trusted to perform identity assertion.
一旦身份验证完成,接受服务器将验证上游服务器是否受信任,可以执行标识断言。
Since it does not use CSIv2, server-side identity assertion does not require any identity assertion configuration for CSIv2 communication.
因为它不使用CSIv2,所以服务器端标识断言不需要任何用于CSIv 2通信的标识断言配置。
When the identity assertion attribute is enabled for the CSIv2 outbound configuration, the subject is switched before making the remote call.
当为CSIv2出站配置启用了标识断言属性时,会在进行远程调用之前切换主题。
Servers in cell a will assert identities to servers in cell B. We will not describe how to configure CSIv2 identity assertion, just the implications of doing so.
计算单元a中的服务器将断言计算单元b中服务器的标识。我们将不会描述如何配置CSIv 2标识断言,只讨论这样做所带来的隐含效果。
The asserted identity is transmitted in a custom token object, which is picked up by the server-side identity assertion login module and used to assert the identity.
在自定义的令牌对象中传输断言的标识,然后由服务器端的标识断言登录模块获得该标识并用于对标识进行断言。
When a specific protocol (for example, CSIv2) is not available to propagate security information for identity assertion, but the identity is available as part of the message.
当某个特定的协议(例如,CSIv2)无法用于传播标识断言的安全信息,但标识作为消息中的一部分是可用的。
应用推荐