Enable embedded Tivoli Access Manager

Embedded Tivoli Access Manager is not enabled by default, and you need to configure it for use.

About this taskEnabling Tivoli Access Manager security within WebSphere Application Server requires:

A supported Lightweight Directory Access Protocol (LDAP) installed somewhere on your network. This user registry contains the user and group information for both Tivoli Access Manager and WebSphere Application Server.
Tivoli Access Manager server exists and is configured to use the user registry. For details on the installation and configuration of Tivoli Access Manager, refer to the IBM Tivoli Access Manager for e-business information center.
Note: WebSphere Application Server contains an embedded client for Tivoli Access Manager. To use Tivoli Access Manager, also configure the Tivoli Access Manager server.
However, the server version must be the same version or later as the client version. For information on the supported version of Tivoli Access Manager, see WebSphere Application Server - Supported Prerequisites.
Tivoli Access Manager server is bundled with WebSphere Application Server.
WebSphere Application Server is installed either in a single server model or as WebSphere Application Server Network Deployment.
When global security is configured with a Federal Information Processing Standard (FIPS) provider, the Tivoli Access Manager server must be configured for FIPS as well

Complete the following steps to enable embedded Tivoli Access Manager security:

Create the security administrative user.
For more information, see Create_the_security_administrative_user.html.
Configure the Java Authorization Contract for Containers (JACC) provider for Tivoli Access Manager .
For more information, see TAM_JACC_provider_configuration.html.
Enable WebSphere Application Server security. When you are using Tivoli Access Manager configure LDAP as the user registry.
For more information, see Configuring Lightweight Directory Access Protocol user registries .
Enable the JACC provider for Tivoli Access Manager.
For more information, see Enablin_the_JACC_provider_for_TAM.html.