Disabling embedded Tivoli Access Manager client using the administrative console
To unconfigure the JACC provider for Tivoli Access Manager, we can use the WAS administrative console.
Ensure that all the managed servers, including node agents, are started. Perform the following process once on the deployment management server. Information from the unconfigure operation is forwarded to managed servers, including node agents, when the server is restarted. The managed servers require their own restart for changes to take effect.
It is also possible to unconfigure using wsadmin line utility. For details on unconfiguring the embedded Tivoli Access Manager client using wsadmin line utility, refer to the information about disabling embedded Tivoli Access Manager client using wsadmin.
- Restart the deployment manager process.
- Click Security > Global security > External authorization providers.
- Make sure the default option, Default authorization, is checked, then click OK.
- On the Global security panel, click External authorization > External JACC provider.
- Under Additional properties, click Tivoli Access Manager Properties. The configuration screen for the JACC provider for Tivoli Access Manager is displayed.
- Clear the Enable embedded Tivoli Access Manager option. To ignore errors when unconfiguring, select the Ignore errors during embedded Tivoli Access Manager disablement option. Select this option only when the Tivoli Access Manager domain is in an irreparable state.
- Click OK.
- Optional: If we want security enabled without Tivoli Access Manager re-enable administrative security.
- Optional: Synchronize all nodes.
- Restart all WebSphere Application Server instances for the changes to take effect.
Related tasks
Enable an external JACC provider Disable embedded Tivoli Access Manager client using wsadmin