JACC policy context handlers
WebSphere Application Server supports all of the policy context handlers that are required by the Java Authorization Contract for Containers (JACC) specification. However, due to performance impacts, the Enterprise JavaBeans (EJB) arguments policy context handler is not activated unless it is specifically required by the provider. Performance impacts result if objects must be created for each of the arguments for each EJB method.
If the provider supports and requires this context handler, enable the Requires the EJB arguments policy context handler for access decisions check box in the External JACC provider link under the Authorization providers panel or by using scripting. Any changes to this are effective after the servers have been restarted . By default this is disabled. When using the Tivoli Access Manager as the JACC provider, this option should be disabled, since the argument values are not required for access decisions.
See Also
Authorization in WebSphere Application Server
Tivoli Access Manager integration as the JACC provider
JACC support in WebSphere Application Server
Related Tasks
Enabling an external JACC provider
Configuring a JACC provider
Propagating security policy of installed applications to a JACC provider using wsadmin scripting
See Also
Interfaces used to support JACC
Troubleshooting authorization providers