The Create Domain Tool can be used to create user password credential mappings for use with the
DefaultCredentialMapper security provider.
Information in the model will be used to create a credential mapping file that will be imported the first time the Administration Server is started. This example shows how mappings are represented in the model:
domainInfo: WLSUserPasswordCredentialMappings: CrossDomain: map1: RemoteDomain: otherDomain RemoteUser: otherUser RemotePassword: '@@PROP:other.pwd@@' RemoteResource: map2: Protocol: http RemoteHost: remote.host RemotePort: 7020 Path: /app/buy Method: POST User: user1 RemoteUser: remoteUser RemotePassword: '@@PROP:remote.pwd@@' map3: Protocol: https RemoteHost: remote2.host RemotePort: 7030 Path: /app/sell Method: GET User: 'user1,user2' RemoteUser: remoteUser2 RemotePassword: '@@PROP:remote2.pwd@@'
In this example, the mapping
map1 creates a cross-domain credential mapping that provides access from this domain to the remote domain
otherDomain as the user
otherUser with the configured password.
map2 creates a remote resource credential mapping that will give the local user
user1 access to a single remote resource on
remote.host as the user
remoteUser with the configured password. The mapping
map3 is similar, but provides access to a different remote resource for two local users,
The names of the mapping sections in the model, such as
map2, are used to group the attributes for each mapping in the model and are not part of the resulting credential mappings. These names should be unique for each mapping of a particular type.