uCosminexus Application Server, Security Management Guide
![[Contents]](FIGURE/CONTENT.GIF)
![[Index]](FIGURE/INDEX.GIF)
![[Back]](FIGURE/FRONT.GIF)
![[Next]](FIGURE/AFTER.GIF)
(1) Additional CSV file specifications
In addition to the specifications shown in 14.4.1 Basic CSV file specifications, the following specifications are added for specifying lists of attributes:
- The first line contains header information, and the second and subsequent lines contain data to be registered.
- The type of information of each item is determined by the header.
- If two successive commas are specified, it is assumed that the option between the commas (,) is omitted.
(2) Specification formats
- Information to be specified in the first line
- Specify the header information shown in the table below. Each item must consist of ASCII characters and be separated by a comma (,). Item IDs can be specified in any order.
Table 14-4 Header information to be specified (definition file for user mapping and authentication information)
| Item ID |
Specification |
Description |
Attribute |
| REALMNAME |
Register identification |
Specify the name of a realm. User entries are created under the specified name. |
Required |
| USERID |
User ID |
Required |
| SECRETDATA |
Authentication information |
Data is to be encrypted and saved. |
Optional |
| PUBLICDATA |
Data is to be saved without encryption. |
Optional |
| LINK_xxxx |
Destination system user |
Specify the name of a user of an application that has user management functionality. (xxxx must be a REALMNAME.) |
Optional |
| OPERATION |
Line operation command |
Specify a line operation type. A file can contain specifications of addition, change, and deletion. |
Optional |
- If the specified name is not an item ID, the field is ignored.
- LINK_xxxx is an item ID created for each realm registered in the single sign-on repository.
- Second and subsequent lines
- Specify actual data to be registered, separating each item by a comma (,).
(3) User definition for applications that have JAAS-compatible user management
The xxxx portion of a LINK_xxxx item ID indicates the name of a realm representing an application that has user management functionality for the connection destination. To define the connection destination, specify a user ID in the xxxx field. To add to or modify the specification, use the following operations:
- Add
- This adds to the given LINK_xxxx item the user ID of an application (or realm) to which you wish to assign user management functionality for the connection destination.
- Modify
- This modifies the given LINK_xxxx item to the user ID of an application (or realm) to which you wish to assign user management functionality for the connection destination.
- Delete
- This deletes the user ID from the given LINK_xxxx item (or specifies nothing in it).
All Rights Reserved. Copyright (C) 2013, Hitachi, Ltd