使用信任连接配置tai。
应用程序可以在分布式事务中使用受信任连接。
The application program will be able to utilize the trusted connection in an distributed transactions.
您可以用两种方法配置TAI选项:使用信任用户或信任连接。
You can set up the TAI option in two ways: with a trusted user or with a trusted connection.
通过以下方法,可以为另一个用户建立和切换受信任连接。
A trusted connection can be established and switched for another user by.
在建立受信任连接之后,应用程序将用户切换到受信任上下文中定义的允许的用户。
After the trusted connection has been established, the application can then switch the user to an allowed user defined in the trusted context.
当尝试建立一个受信任连接时,需要评估一系列的信任属性,以决定一个特定的上下文是否是受信任的。
When there is an attempt to establish a trusted connection, a series of trust attributes are evaluated to determine if a specific context is to be trusted.
现在,您知道了如何配置两种TAI选项——使用信任用户或信任连接——在决定使用哪种配置的时候需要考虑各自的优缺点。
Now that you know how to set up both TAI options — using a trusted user or a trusted connection — consider the pros and cons of each to decide which to use.
下面的例子展示如何在一个CLI应用程序中,为用户ID“newton”建立到testdb数据库的受信任连接。
The example below shows how to establish a trusted connection for user ID "Newton" to testdb database in a CLI application.
如果cli句柄仍然存在,它也不再被标记为受信任连接,因为当创建连接时,xa在xa_open期间执行受信任上下文设置。
If the CLI handle still exists, it is no longer marked as a trusted connection since the trusted context setting was performed by the xa code during xa_open, when the connection was created.
为了切换一个受信任连接上的用户,应用程序必须首先调用xa_end (TM_SUCCESS),并通过调用SQLSetConnectAttr指定新的用户ID和可选的密码。
In order to switch a user on a trusted connection, the application must first call xa_end (TM_SUCCESS) and specify the new user ID and optional password by calling SQLSetConnectAttr.
你不是尝试去从外在解决任何问题,而是连接到另外一个人的灵魂并为他们支撑起一个信任和明朗的视野。
Instead of trying to solve any problems on the outside, you are connecting to the other person's soul and you are holding a vision of trust and clarity for them.
受信任的主机:数据库根据连接请求的来源确定是否信任这个主机。
Trusted hosts: the database assumes trust based on the source of the connection request.
要检验证书是可信任的,需要在连接建立之前提前加载一个可信任证书库。
Verifying that the certificate is trusted requires that a trust certificate store be loaded prior to establishing the connection.
注意,第一次连接时,您的浏览器可能会提醒您使用了一个未被信任的证书,因为您生成了自己的证书。
Note that the first time you connect, your browser is likely to complain about an untrusted certificate, because you generated your certificate yourself.
在应用程序已经建立与DB 2服务器的连接之后,应用程序可以在后端切换与受信任上下文相关联的用户。
After the application has established a trusted connection with the DB2 server, the application may switch users associated with the trusted context object in the backend.
可信任上下文是一个数据库对象,定义了连接的属性。
A trusted context is a database object defining the set of properties for a connection.
为了避免对安全漏洞的攻击,使用这些受信任方法的应用服务器不应该使用不受信任的连接方法。
To avoid vulnerability to security breaches, an application server that USES these trusted methods should not use un-trusted connection methods.
信任存储区的作用相当于一个枚举允许连接的所有标识的列表。
The trust store effectively becomes an enumeration of all the identities allowed to connect.
远程数据源上的身份断言对象为建立可信出站连接定义信任属性。
The identity assertion object on the remote data source defines the trust attributes for establishing a trusted outbound connection.
最好从以下角度考虑:信任绑定到该证书的标识有效,然后设置相应标准以定义允许哪些标识连接。
Better to think of it in terms of trusting that the identity bound to the certificate is valid and then setting criteria defining which identities are allowed to connect.
当传入连接请求的所有属性匹配DB2服务器上任何可信上下文对象的所有信任属性时,DB2 服务器隐式地授予一个可信连接。
When all attributes of an incoming connection request match all the trust attributes of any trusted context object on the DB2 server, the DB2 server implicitly grants a trusted connection.
当请求一个SSL 保护的页面时,浏览器认为服务器是一个可信任的实体,并且启用一个连接来回传递加密的信息。
When an SSL-protected page is requested, the browser identifies the server as a trusted entity and initiates a handshake to pass encryption key information back and forth.
最后,验证联合数据库服务器可信上下文对象中的信任属性与连接请求中出现的信任属性相匹配。
Finally, verify that the trust attributes in the trusted context object on the federated database server actually match the trust attributes that are being presented in your connection request.
WebSphereFederationServer上的可信上下文对象为可信的入站连接封装信任属性。
The trusted context object on WebSphere Federation Server encapsulates the trust attributes for a trusted inbound connection.
它假设从WebSEAL到ApplicationServer的连接是完全信任的,因此,需要用于认证的客户端证书。
It assumes that the connection from WebSEAL to Application Server is completely trusted; therefore, client-side certificates for authentication are required.
如果您担心这种类型的攻击(可以通过代码检查轻松地加以防止),则可以阻止任何不受信任的客户端连接到web容器。
If you are concerned about this type of attack, which is easily prevented through code inspections, you can prevent untrusted clients from connecting to the Web container.
如果不能确认证书是可信任的,那么openssl会将证书标记为无效(但连接仍可以继续)。
If the certificate cannot be verified for trust, OpenSSL flags the certificate as invalid (but the connection can still continue).
如果不能确认证书是可信任的,那么openssl会将证书标记为无效(但连接仍可以继续)。
If the certificate cannot be verified for trust, OpenSSL flags the certificate as invalid (but the connection can still continue).
应用推荐