Purpose
The com.tivoli.pd.jcfg.PDJrteCfg utility configures the Java Runtime Environment component for Tivoli Access Manager. This component enables WebSphere Application Server to use Tivoli Access Manager security.
Important: If you are using the WebSphere Application Server Network Deployment product, run the pdjrtecfg utility first on the deployment manager. Then, run the script on the other
nodes in the cell.
Syntax
java com.tivoli.pd.jcfg.PDJrteCfg -action {config | unconfig} -cfgfiles_path configuration_file_path -host policy_server_host -was [-java_home jre_path]
Parameters
Valid values for policy_server_host include any valid IP host name. Examples include:
host = libra
* host = libra.dallas.ibm.com
For example: -java_home /usr/lpp/java/J1.3
Comments
This command copies Tivoli Access Manager Java libraries to a library extensions directory that exists for a Java runtime that has already been installed on the system.
Using this command does not overwrite Java Archive (JAR) files that already exist in the jre_home/lib/ext directory, except the PD.jar file, which is overwritten if the file exists.
You can install more than one Java Runtime Environment (JRE) on a given machine. The pdjrtecfg command can be used to configure the Tivoli Access Manager Java Runtime Environment component independently for each of the JRE configurations.
Example
${JAVA_HOME}/bin/java
-Dfile.encoding=ISO8859-1 \
-Dws.output.encoding=CP1047 \
-Xnoargsconversion \
-Dpd.home=${WAS_HOME}/java/jre/PolicyDirector \
-cp ${WAS_HOME}/java/jre/lib/ext/PD.jar \
com.tivoli.pd.jcfg.PDJrteCfg \
-action config \
-cfgfiles_path ${WAS_HOME}/java/jre \
-host gary.us.ibm.com \
-was
Related tasks
Configuring single signon capability with Tivoli Access Manager or WebSEAL