WAS v8.5 > Secure applications > Authorizing access to resources > Authorizing access to Java EE resources using Tivoli Access Manager > Enable an external JACC providerPropagating security policies and roles for previously deployed applications
Use this task to propagate security policies and roles to the external Java Authorization Contract for Containers (JACC) provider.
The external JACC provider must be configured before following these steps.
After switching to use the external JACC provider we can follow these steps to avoid having to redeploy your existing applications. Updating using these steps retrieves the security policy and roles from the deployed applications and propagates it to the external JACC provider removing the need for the applications to be redeployed.
- From the WebSphere Application Server dmgr console, click Security > Global security > External authorization providers.
- Select the appropriate security policy and role updating option.
- Select Don't update provider to not propagate any security policies or roles
- Select Update with all applications to propagate security policies and roles for all applications
- Select Update with application names listed to propagate security policies and roles for the selected applications. If multiple applications should be updated, separate the application names with commas.
- Click Apply.
Results
After completing this task your security policies and roles have been successfully propagated to the external JACC provider.
Related concepts:
JACC providers
Related
Propagating security policy of installed applications to a JACC provider using wsadmin.sh
Enable an external JACC provider
Reference:
JACCUtilityCommands command group for AdminTask
JACC policy propagation