Security Statistics Test

When a message flow is configured with a security profile, requests are typically made to a security provider or security token server (STS) to process and approve authentication, mapping, or authorization. Use the Security statistics test to review the number of requests that are made, how many of those requests are successful, and how many are being serviced from the security cache.

Target of the test : An IBM Integration Bus

Agent deploying the test : An internal/remote agent.

Outputs of the test : One set of results for each Execution group:security proivider of the Integration server that is to be monitored

Configurable parameters for the test
Parameters Description

Test period

How often should the test be executed.

Host

The host for which the test is to be configured.

Port

The port on which the specified host listens.

JNDI Namespace Location

Indicate where the JNDI namespace has been created. For this, select one of the following options: File or LDAP. Select File if the JNDI namespace is created in the same location as that of the IIB server.

SSL

If you have chosen LDAP as the JNDI Namespace Location wherein the LDAP server communicating with the IIB server that is to be monitored is an SSL-enabled server, then set the SSL flag to Yes. By default, this flag is set to No.

User DN and Password

Here, provide the credentials of the Active Directory user created as explained in Creating a user in the Active Directory server, if the target IIB server is monitored in an agentless manner. If the IIB server is to be monitored in an agent based manner, specify none against these parameters.

Confirm Password

Confirm the Password by retyping it in this text box.

JNDI Provider URL

Specify the URL that was specified as the provider URL while creating the initial context. To know the Provider URL, refer to Agent based monitoring of the IIB server if you choose to monitor the target IIB server in an agent based manner and Agentless Monitoring of the IIB server if you chose to monitor the target IIB server in an agentless manner.

TopicConnectionFactory

Specify the name of the connection factory in this text box. If you have chosen to monitor the target IIB server in an agent-based manner, refer to Creating a Connection Factory and if you have chosen to monitor the target IIB server in an agentless manner, refer to Creating a Connection Factory.

JMS Resource Stats

Specify the name of the JMS destination that you have created for storing the Resource statistics. If you chose to monitor the target IIB server in an agentless manner, refer to Creating the JMS Destinations and if you choose to monitor the target IIB server in an agent based manner, refer to Agent based monitoring of the IIB server.

JMS Flow Stats

Specify the name of the JMS destination that you have created for storing the Message flow statistics. If you chose to monitor the target IIB server in an agentless manner, refer to Creating the JMS Destinations and if you choose to monitor the target IIB server in an agent based manner, refer to Agent based monitoring of the IIB server.

Measurements made by the test
Measurement Description Measurement Unit Interpretation

Total cache entries

Indicates the total number of security operation result entries in the security cache of this security provider.

Number

A security operation is defined in the security profile as authentication, mapping, or authorization. A cache entry might include a returned security token.

Total security operations

Indicates the total number of security operations during the last measurement period.

Number

A security operation is defined in the security profile as authentication, mapping, or authorization. A security profile with both authentication and authorization counts as two operations.

Successful security operations

Indicates the number of security operations that were approved during the last measurement period.

Number

 

Operations serviced by cache

Indicates the number of security operations that were serviced from the security cache during the last measurement period.

Number

A high value is desired for this measure.

Unsuccessful security operations

Indicates the number of security operations that failed to be approved during the last measurement period.

Number

Ideally, the value of this measure should be zero.