IBM BS029ML Self Help Guide - Page 31
Logical Deployment Units, Internet Browser, Tivoli WebSEAL, Tivoli Access Manager Policy Server
View all IBM BS029ML manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 31 highlights
aspects of a solution architecture. By contrast, the operational model provides the description and configuration of the hardware and software technologies needed to deliver the required solution characteristics and capabilities, within the constraints of technology, skills, and budget. It describes the distribution of the solution components onto geographically distributed nodes, together with the connections necessary to achieve the solution functional and non-functional requirements. Typically, the development of both the component and operational models follow various recognized paths using standard techniques or approaches. However, with the advent of Commercially-Off-The-Shelf (COTS) packages, such as WebSphere Portal Server, the demands on the IT Architect and Portal Practitioner have been reduced. Nevertheless, our experience tells that making mistakes during the architectural phase of an implemention can lead to major consequences later on in a project. As such, it is strongly recommended that IBM is engaged during this crucial period of any implementation, if not at any other time during a project. 2.2.1 Logical Deployment Units The following Deployment Units are considered in regards to a WebSphere Portal Server architecture. The list, however, is by no means exhaustive and provides only a starting point in recognizing the primary Commercially-Off-The-Shelf (COTS) packages associated with such an architecture. Internet Browser The Internet Browser component is a standard Web browser, such as Internet Explorer® or Mozilla Firefox. This component communicates with the solution through the HTTP / HTTPS protocol, receives responses in HTML format, and renders them for the user. The Internet Browser has general characteristics that include Graphical Presentation, HTML, Applet Execution within a Java Virtual Machine (JVM™), JavaScript™ Execution, Plug-In Support, Caching, Security and encryption Services, and Content Persistence (cookies). Tivoli WebSEAL (Optional) Tivoli WebSEAL is a high-performance, multi-threaded Web Proxy server that applies fine-grained security policy to the Tivoli Access Manager protected Web object space. WebSEAL can provide single sign-on solutions and incorporate back-end Web application server resources into its security policy. WebSEAL normally acts as a reverse Web proxy by receiving HTTP/HTTPS requests from a Web browser and delivering content from its own Web server or from junctioned back-end Web application servers. Requests passing through WebSEAL are evaluated by the Tivoli Access Manager authorization service to determine whether the user is authorized to access the requested resource. Tivoli Access Manager Policy Server (Optional) The Tivoli Access Manager Policy Server for e-business is an authorization and management solution that scales across the entire enterprise. A robust and secure policy management tool for e-business and distributed applications, it addresses the challenges of escalating security costs, growing complexity, and the need for uniform security policies across platforms. Tivoli Access Manager unites core security technologies around common security policies to help reduce implementation time and management complexity, thereby lowering the total cost of security-enhanced computing. Chapter 2. Architecture and planning 17