Anonymous Usage Allowed | Boolean Specifies whether to allow all users to access the asset, without restriction. | |||
Value | Description | |||
False | Default. Allows only the users specified in the Identify User Using parameter to access the assets. | |||
True | Allow all users to access the asset. In this case, do not configure the Identify User Using parameter. | |||
Identify User Using | String Specifies the kind of consumer identifier that the action will use to identify consumer applications. | |||
Value | Description | |||
IP Address | Identifies one or more consumer applications based on their originating IP addresses. | |||
Host Name | Identifies consumer applications based on a host name. | |||
HTTP Authentication Token | Uses HTTP Basic authentication to verify the consumer's authentication credentials contained in the request's Authorization header. Mediator authorizes the credentials against the list of consumers available in the Integration Server on which Mediator is running. This type of consumer authentication is referred to as “preemptive authentication”. If you want to use “preemptive authentication”, you should also include the action Require HTTP Basic Authentication in the policy. If you choose to omit “Require HTTP Basic Authentication”, the client will be presented with a security challenge. If the client successfully responds to the challenge, the user is authenticated. This type of consumer authentication is referred to as “non-preemptive authentication”. For more information, see Require HTTP Basic Authentication.
| |||
WS-Security Authentication Token | Validate user names and passwords that are transmitted in the SOAP message header in the WSS Username Token. If you select this value, you should also include the action Require WSS Username Token in the policy. | |||
Custom Identification | Validates consumer applications based on an XML element (represented by an XPath expression). | |||
Consumer Certificate | Identifies consumer applications based on information in a WSS X.509 certificate. If you select this value, you should also include the action Require WSS X.509 Token or the action Require Signing in the policy. | |||
Client Certificate for SSL Connectivity | Validates the client's certificate that the consumer application submits to the asset in CentraSite. The client certificate that is used to identify the consumer is supplied by the client to the Mediator during the SSL handshake over the transport layer. In order to identify consumers by transport-level certificates, the run-time communication between the client and the Mediator must be over HTTPS and the client must pass a valid certificate. To use this option, the following prerequisites must be met: In Integration Server, create a keystore and truststore, as described in webMethods Integration Server Administrator’s Guide . In Integration Server, create an HTTPS port, as described in webMethods Integration Server Administrator’s Guide . Configure Mediator by setting the IS Keystore and IS Truststore parameters, as described in t Administering webMethods Mediator . Configure Mediator by setting the HTTPS Ports Configuration parameter, as described in Administering webMethods Mediator . |