Use the built-in authorization provider
We can extend the capabilities of WAS by plugging in our own authorization provider. Use the built-in authorization or an external JACC authorization provider.
For an explanation of the admin console panels that support these capabilities, see:
- Use the built-in authorization provider. IBM recommends that you do not modify any settings on the authorization provider panels if we use the Built-in authorization option.
- Use an external authorization provider. If we use the External authorization using a JACC provider option, the external providers must be based on the Java Authorization Contract for Containers (JACC) specification to handle the Java EE authorization. By default, WAS enables you to configure the TAM Java Authorization Contract for Containers (JACC) provider as the default external JACC provider.
External authorization provider settings
External Java Authorization Contract for Containers provider settings
TAM JACC provider settings