Forcing the unconfiguration of the TAM JACC provider
If we find we cannot restart WAS after configuring the JACC provider for TAM a utility is available to clear the security configuration and return WAS to an operable state.
The utility removes all of the PDLoginModuleWrapper entries as well as the TAM authorization table from security.xml and wsjaas.conf files. This utility effectively removes the JACC provider for TAM.
- Back up the security.xml and wsjaas.conf files.
- Enter the following command as one continuous line.APP_ROOT/java/jre/bin/java -classpath "APP_ROOT /$WAS_HOME/plug-in/com.ibm.ws.runtime_1.0.0.jar" com.tivoli.pd.as.jacc.cfg.CleanSecXML fully_qualified_path/security.xml fully_qualified_path/wsjaas.conf
Disable embedded TAM client using wsadmin
Enable an external JACC provider