Enable embedded Tivoli Access Manager
Embedded Tivoli Access Manager is not enabled by default, and we need to configure it for use.
Enable Tivoli Access Manager security within WebSphere Application Server requires:
- A supported LDAP installed somewhere on the network. This user registry contains the user and group information for both Tivoli Access Manager and WebSphere Application Server.
- Tivoli Access Manager server exists and is configured to use the user registry. For details on the installation and configuration of Tivoli Access Manager, refer to the IBM Tivoli Access Manager for e-business information center.
WebSphere Application Server contains an embedded client for Tivoli Access Manager. To use Tivoli Access Manager, you must also configure the Tivoli Access Manager server.
Tivoli Access Manager server is bundled with WebSphere Application Server.
- WebSphere Application Server is installed either in a single server model or as WebSphere Application Server Network Deployment.
- When administrative security is configured with a FIPS provider, the Tivoli Access Manager server must be configured for FIPS as well
Complete the following steps to enable embedded Tivoli Access Manager security:
- Create the security administrative user.
For more information, see Create the security administrative user for Tivoli Access Manager.
- Configure the Java Authorization Contract for Containers (JACC) provider for Tivoli Access Manager .
For more information, see Tivoli Access Manager JACC provider configuration.
- Enable WAS security. When using Tivoli Access Manager configure LDAP as the user registry.
For more information, see Configure Lightweight Directory Access Protocol user registries.
- Enable the JACC provider for Tivoli Access Manager.
For more information, see Enable the JACC provider for Tivoli Access Manager.
Related tasks
Enable an external JACC provider Create the security administrative user for Tivoli Access Manager Configure Lightweight Directory Access Protocol user registries Enable the JACC provider for Tivoli Access Manager
Tivoli Access Manager JACC provider configuration