WAS v8.5 > Secure applications > Authenticate users > Use the JAAS programming model for web authentication > Develop custom login modules for a system login configuration for JAAS > Customize application login with JAAS > Step 2. Configure programmatic logins with JAAS. > Configure programmatic logins for JAASManage Java 2 Connector Architecture authentication data entries for JAAS
This task creates and deletes Java 2 Connector (J2C) authentication data entries.
Java EE Connector authentication data entries are used by resource adapters and Java DataBase Connectivity (JDBC) data sources. A Java EE Connector authentication data entry contains authentication data, which includes the following information:
- Alias
- An identifier that identifies the authentication data entry. When configuring resource adapters or data sources, the administrator can specify which authentication data to choose using the corresponding alias.
- User ID
- A user identity of the intended security domain. For example, if a particular authentication data entry is used to open a new connection to DB2 , this entry contains a DB2 user identity.
- Password
- The password of the user identity is encoded in the configuration repository.
- Description
- A short text description.
- Delete a J2C authentication data entry.
- Click Security > Global security.
- Under Java Authentication and Authorization Service, click J2C authentication data. The J2C Authentication Data Entries panel is displayed.
- Select the check boxes for the entries to delete and click Delete. Before deleting or removing an authentication data entry, verify it is not used or referenced by any resource adapter or data source. If the deleted authentication data entry is used or referenced by a resource, the application that uses the resource adapter or the data source fails to connect to the resources.
- Create a new J2C authentication data entry.
- Click Security > Global security.
- Under Java Authentication and Authorization Service, click J2C authentication data. The J2C Authentication Data Entries panel is displayed.
- Click New.
- Enter a unique alias, a valid user ID, a valid password, and a short description (optional).
When creating a new authentication data entry and specifying an alias, be aware the node name is automatically appended as a prefix to the alias name we specify. For example, if we specify the alias, tek_test_Con3, and the node is MyNode, then the final alias name is: MyNode/tek_test_Con3.
Remember that this full alias name is the one used in your deployment descriptor.
- Click OK or Apply. No validation for the user ID and password is required.
- Click Save.
Results
A new J2C authentication data entry is created or an old entry is removed. The newly created entry is visible without restarting the application server process to use in the data source definition. But the entry is only in effect after the server is restarted. Specifically, the authentication data is loaded by an application server when starting an application and is shared among applications in the same application server.
This step defines authentication data that we can share among resource adapters and data sources. Use the authentication data entry defined in the resource adapters or the data sources.
Subtopics
- Java 2 Connector authentication data entry settings
Use this page as a central place for administrators to define authentication data, which includes user identities and passwords. These values can reference authentication data entries by resource adapters, data sources, and other configurations that require authentication data using an alias.- J2C principal mapping modules
We can develop our own J2EE Connector (J2C) mapping module if the application requires more sophisticated mapping functions. The mapping login module that you might have developed on WebSphere Application Server v5.x is still supported in WAS v6.0.x and later.- Java 2 Connector authentication data entry settings
Use this page as a central place for administrators to define authentication data, which includes user identities and passwords. These values can reference authentication data entries by resource adapters, data sources, and other configurations that require authentication data using an alias.- J2C principal mapping modules
We can develop our own J2EE Connector (J2C) mapping module if the application requires more sophisticated mapping functions. The mapping login module that you might have developed on WAS v5.x is still supported in WAS v6.0.x and later.
Related concepts:
Programmatic login for JAAS
Related
Configure programmatic logins for Java Authentication and Authorization Service