Authorizing access to J2EE resources using TAM

The Java Authorization Contract for Containers (JACC) defines a contract between Java EE containers and authorization providers. We can use the default authorization or an external JACC authorization provider. When security is enabled in WAS, the default authorization is used unless a JACC provider is specified.

JACC enables any third-party authorization providers to plug into a Java EE appserver (such as WAS) to make the authorization decisions when a Java EE resource is accessed. By default, WAS implements the JACC provider by using TAM as the external authorization provider.

Read the following articles for more detailed information about JACC before you attempt to configure WAS to use a JACC provider:


Use the built-in authorization provider
Enable an external JACC provider


Related concepts

TAM integration as the JACC provider
Authorization providers
JACC providers
JACC support in WAS



Interfaces that support JACC
Security authorization provider troubleshooting tips
External Java Authorization Contract for Containers provider settings