Configuring Server-Side IOS

  1. Access the IOS server machine and stop all the servers and nodes.
  2. Open the WebSphere Administrative Console.
  3. Navigate to Security > Global Security > User Account Repository section.
  4. Select the current Realm Definition(1) then click Configure. Check if there is a valid value for the Primary administrative user name field.
  5. If the field is blank, enter a valid value.

    This field is required by the administrative security. A sample valid value is an existing username on the current operating system. Note that this is only applicable if the current Realm Definition is set to Local operating system.

  6. Click OK and save the changes to the master configuration.
  7. Navigate to Security > Global Security. Tick the Enable administrative security checkbox to enable Administrative and Application Security feature.
  8. Click the Apply button and save the changes to the master configuration.
  9. Navigate to Security > Global Security > RMI/IIOP security > CSIv2 inbound communications.
  10. On the CSIv2 Transport Layer section, configure the following values:
    Entity Value
    Transport Set it to the SSL-required value
    SSL Settings Set it to the SSL-required Aliasvalue
    Client certificate authentication Optional. Enabling this feature will authenticate each client's identity and will only allow connections from clients with saved SSL Signer certificates on the IOS truststore.