One of the challenges for organizations using ESB technology is implementing security across different platforms with each having their own security authority and credentials. Previously it was necessary for the application designer to provide the user ID and password for the target system. This is inconvenient for the application designer since these credentials are not available without prompting the user or storing them ad-hoc. Also it is inherently unsafe to transmit these credentials over the wire even in an encrypted form. This solution leverages the existing authenticated logon credentials using standard platform security mechanisms and Kerberos. The functionality provides authentication and authorization against RACF, CA_ACF2 and Top Secret working with application components executing in Windows, LINUX and IBM® z/OS.
The solution is currently available to support Software AG EntireX Broker and for Websphere MQ shortly.