WAS v8.5 > Secure applications > Authorizing access to resources > Authorizing access to Java EE resources using Tivoli Access Manager > Enable an external JACC provider > Configure the JACC provider for Tivoli Access Manager

Create the security administrative user for Tivoli Access Manager

Enabling security requires the creation of a WebSphere Application Server administrative user. Use the Tivoli Access Manager command-line pdadmin utility to create the Tivoli Access Manager administrative user for WAS. This utility is available on the policy server host machine.

Follow these steps to use the pdadmin utility.

  1. From a command line, start the pdadmin utility as the Tivoli Access Manager administrative user, sec_master:

      pdadmin -a sec_master -p sec_master_password

  2. Create a WAS security user. For example, the following instructions create a new user, wasadmin. The command is entered as one continuous line:
    pdadmin> user create wasadmin cn=wasadmin,o=organization,
    c=country wasadmin wasadmin myPassword 

    Substitute values for organization and country that are valid for the LDAP user registry.

  3. Enable the account for the WAS security administrative user by issuing the following command:

      pdadmin> user modify wasadmin account-valid yes

Configure the Java Authorization Contract for Container (JACC) provider for Tivoli Access Manager. For more information, see Tivoli Access Manager JACC provider configuration.


Related concepts:

Tivoli Access Manager security for WAS


+

Search Tips   |   Advanced Search