WAS v8.5 > Script the application serving environment (wsadmin) > Use properties files to manage system configuration > Manage specific configuration objects using properties files > Work with security properties filesWork with JAAS authorization data properties files
We can use properties files to create, modify, or delete Java Authentication and Authorization Service (JAAS) authorization data properties.
Determine the changes to make to your JAAS authorization data object or its properties.
Start the wsadmin scripting tool. To start wsadmin using the Jython language, run the wsadmin -lang jython command from the bin directory of the server profile. Using a properties file, we can create, modify, or delete a JAAS authorization data object.
Run administrative commands using wsadmin to create or change a properties file for a JAAS authorization data, validate the properties, and apply them to your configuration.
Actions for JAAS authorization data properties files. We can create, modify, and delete JAAS properties.
Action Procedure create Set required properties and then run the applyConfigProperties command. modify Edit any properties and then run the applyConfigProperties command. delete To delete the entire JAASAuthData object, uncomment #DELETE=true and then run the deleteConfigProperties command. create Property Not applicable delete Property Not applicable Optionally, we can use interactive mode with the commands:
AdminTask.command_name('-interactive')
- Create a properties file for a JAASAuthData object.
- Set JAASAuthData properties as needed.
Open an editor on a JAASAuthData properties file. Modify the Environment Variables section to match the system and set any property value that needs to be changed. An example JAASAuthData properties file follows:
# # Header # ResourceType=JAASAuthData ImplementingResourceType=Security ResourceId=Cell=!{cellName}:Security=:JAASAuthData=alias#myAlias AttributeInfo=authDataEntries #DELETE=true # # #Properties # password=myPassword #required userId=cp_web #required alias=myAlias #required description=my new alias EnvironmentVariablesSection #Environment Variables cellName=myCell
- Run the applyConfigProperties command to create or change a JAAS authorization data object.
Running the applyConfigProperties command applies the properties file to the configuration. In this Jython example, the optional -reportFileName parameter produces a report named report.txt:
AdminTask.applyConfigProperties(['-propertiesFileName myObjectType.props -reportFileName report.txt'])
- Modify an existing properties file.
- Obtain a properties file for the JAASAuthData object to change.
We can extract a properties file for a JAASAuthData object using the extractConfigProperties command.
- Open the properties file in an editor and change the properties as needed.
Ensure the environment variables in the properties file match the system.
- Run the applyConfigProperties command.
- If you no longer need the JAAS authorization data object, we can delete the entire JAAS object.
To delete the entire object, specify DELETE=true in the header section of the properties file and run the deleteConfigProperties command; for example:
AdminTask.deleteConfigProperties('[-propertiesFileName myObjectType.props -reportFileName report.txt]')
Results
We can use the properties file to manage the JAAS authorization data object and its properties.
Save the changes to your configuration.
Related
Extracting properties files using wsadmin.sh
Create server, cluster, application, or authorization group objects using properties files and wsadmin scripting
Delete server, cluster, application, or authorization group objects using properties files
Reference:
PropertiesBasedConfiguration command group for AdminTask using wsadmin.sh