Creating the security administrative user for Tivoli Access Manager
Enable security requires the creation of a WAS administrative user. Use the Tivoli Access Manager command-line pdadmin utility to create the Tivoli Access Manager administrative user for WebSphere Application Server. This utility is available on the policy server host machine.
Follow these steps to use the pdadmin utility.
- From a command line, start the pdadmin utility as the Tivoli Access Manager administrative user, sec_master:
pdadmin -a sec_master -p sec_master_password
- Create a WAS security user. For example, the following instructions create a new user, wasadmin. The command is entered as one continuous line:
pdadmin> user create wasadmin cn=wasadmin,o=organization, c=country wasadmin wasadmin myPassword
Substitute values for organization and country that are valid for the LDAP user registry.
- Enable the account for the WAS security administrative user by issuing the following command:
pdadmin> user modify wasadmin account-valid yes
What to do next
Configure the Java Authorization Contract for Container (JACC) provider for Tivoli Access Manager. For more information, see Tivoli Access Manager JACC provider configuration.
Related concepts
Tivoli Access Manager security for WebSphere Application Server