2.2 Security Considerations
Following are some considerations for LANSA Web security:
- LANSA Web provides additional security features, on top of the security features provided by the Web serving products.
- LANSA Web allows for anonymous user access. Anonymous access allows a casual visitor to use your Web applications without a user profile. There is a Data/Application Server user profile assigned to this anonymous user. This profile should only have minimal access rights on your Server.
- It is recommended that you start with anonymous user access when you first install, configure and test the LANSA Web software. Once you have this level of authentication working properly, you can easily implement partial or full user authentication.
- If you decide not to use the anonymous user access option, refer to the security information in the Installing LANSA on IBM i Guide.
- If you intend to allow for anonymous user access to your applications, you can also configure LANSA Web to enforce user authentication to specific Web applications. Partial or process level authentication allows you to restrict access to a specific set of Web enabled applications while still allowing anonymous user access to the rest of your Web enabled applications. The casual visitor to your Web site can access the applications, which are intended for public access. Partial or process level authentication is not available for WAMs.
- You may choose to implement the full user authentication model. A user must enter a valid user profile and password to access any part of your application. Public access will not be allowed to any part of your application.
2.2.1 Web and IBM i User Profiles
Task: Configure LANSA Web Security in the LANSA for i Administration Guide.