WAS v8.5 > Secure applications > Authorizing access to resources > Authorizing access to Java EE resources using Tivoli Access Manager > Enable an external JACC provider

Forcing the unconfiguration of the Tivoli Access Manager JACC provider

If you find we cannot restart WebSphere Application Server after configuring the JACC provider for Tivoli Access Manager a utility is available to clear the security configuration and return WAS to an operable state.

The utility removes all of the PDLoginModuleWrapper entries as well as the Tivoli Access Manager authorization table from security.xml and wsjaas.conf files. This utility effectively removes the JACC provider for Tivoli Access Manager.

  1. Back up the security.xml and wsjaas.conf files.

  2. Enter the following command as one continuous line.

    app_server_root/java/jre/bin/java 
    -classpath "app_server_root /$WAS_HOME/plug-in/com.ibm.ws.runtime_1.0.0.jar" 
     com.tivoli.pd.as.jacc.cfg.CleanSecXML 
     fully_qualified_path/security.xml fully_qualified_path/wsjaas.conf


Related


Enable an external JACC provider
Disable embedded Tivoli Access Manager client using wsadmin


+

Search Tips   |   Advanced Search