JACCUtilityCommands (AdminTask)

Use this topic as a reference for the commands for the JACCUtilityCommands group (AdminTask). Use these commands to determine whether Java Authorization Contract for Containers (JACC) is enabled and whether the runtime uses a single security domain. We can also use these commands to propagate the security policies for application to the JACC provider.

The following commands are available for the JACCUtilityCommands group of the AdminTask object.

• isJACCEnabled

• isSingleSecurityDomain

• propagatePolicyToJACCProvider

isJACCEnabled

The isJACCEnabled command displays whether JACC is enabled or disabled in the global security domain when the server was started. The command does not indicate dynamic changes. Instead, it displays the JACC status at server startup.

Target object: None.

Required parameters

None.

Return value

The command returns true if JACC is enabled. The command returns false if JACC is disabled.

Batch mode example

Using Jython string:

AdminTask.isJACCEnabled()

Interactive mode

Jython:

AdminTask.isJACCEnabled('-interactive')

isSingleSecurityDomain

The isSingleSecurityDomain command displays whether the environment is configured to use a single security domain when the server was started. The command does not indicate dynamic changes. Instead, it displays the security domain status at server startup.

Target object: None.

Required parameters

None.

Return value

The command returns true if the environment uses a single security domain. The command returns the false string if the environment uses multiple security domains.

Batch mode example usage

Jython:

AdminTask.isSingleSecurityDomain()

Interactive mode

Jython:

AdminTask.isSingleSecurityDomain('-interactive')

propagatePolicyToJACCProvider

The propagatePolicyToJACCProvider command propagates the security policies of the applications of interest to the JACC provider. This command is supported in a single security domain environment only.

Target object: None.

Required parameters

None.

Optional parameters

-appNames

List of application names delimited with a colon character (:). (String, optional)

The command uses all applications if we do not specify a value for this parameter, as the following syntax demonstrates: AdminTask.propagatePolicyToJACCProvider()

Return value

The command does not return output.

Batch mode example

Jython string...

AdminTask.propagatePolicyToJACCProvider ('-appNames "app1:app2:app3"')

Jython list:

AdminTask.propagatePolicyToJACCProvider ('-appNames', '"app1:app2:app3"')

Interactive mode

Jython:

AdminTask.propagatePolicyToJACCProvider ('-interactive')

Related concepts

JACC providers

Related tasks

Propagating security policy of installed applications to a JACC provider

Use the wsadmin scripting AdminTask object for scripted administration

JACC policy propagation