WAS v8.5 > Secure applications > Authorizing access to resources > Authorizing access to Java EE resources using Tivoli Access ManagerUse the built-in authorization provider
We can extend the capabilities of WebSphere Application Server by plugging in our own authorization provider. We can use the built-in authorization or an external JACC authorization provider. For an explanation of the dmgr console panels that support these capabilities, see:
- Use the built-in authorization provider. It is recommended that we do not modify any settings on the authorization provider panels if we use the Built-in authorization option. For more information, see External authorization provider settings.
- Use an external authorization provider. If we use the External authorization using a JACC provider option, the external providers must be based on the Java Authorization Contract for Containers (JACC) specification to handle the Java EE authorization. By default, WAS enables you to configure the Tivoli Access Manager Java Authorization Contract for Containers (JACC) provider as the default external JACC provider. For more information, see External Java Authorization Contract for Containers provider settings and Tivoli Access Manager JACC provider settings.
Subtopics
- External authorization provider settings
Use this page to enable a Java Authorization Contract for Containers (JACC) provider for authorization decisions.- External Java Authorization Contract for Containers provider settings
Use this page to configure the application server to use an external Java Authorization Contract for Containers (JACC) provider. For example, the policy class name and the policy configuration factory class name are required by the JACC specification.- External authorization provider settings
Use this page to enable a Java Authorization Contract for Containers (JACC) provider for authorization decisions.- External Java Authorization Contract for Containers provider settings
Use this page to configure the application server to use an external Java Authorization Contract for Containers (JACC) provider. For example, the policy class name and the policy configuration factory class name are required by the JACC specification.
Reference:
Tivoli Access Manager JACC provider settings