Enable an external JACC provider
Overview
JACC allows third-party authorization providers to make access decisions for J2EE resources.
Procedure
- From the WAS administrative console, click...
Security | Secure administration, applications, and infrastructure | External authorization providers | Related items | External JACC provider
- The fields are set for TAM by default.
If TAM is not the JACC provider, insert details for your external JACC provider.
- Set custom properties.
When using TAM, use the TAM properties link instead of the Custom properties link.
- Select...
External authorization providers | External authorization using a JACC provider | OK
- If you are using TAM, select LDAP as the user registry.
- Verify that all of the changes are synchronized across all nodes.
- In a multinode environment, restart the deployment manager...
profile_root/bin/stopManager.sh -username user_name -password password
profile_root/bin/startManager.sh
- Restart all appservers.
Configure the JACC provider for TAM using the administrative console
Administering security users and roles with TAM
Configure TAM groups
Configure additional authorization servers
Logging TAM security
Interfaces that support JACC
Enabling the JACC provider for TAM
Enabling embedded TAM
Disabling embedded TAM client using the administrative console
Forcing the unconfiguration of the TAM JACC provider
Manually configuring TAM only for authentication on WAS 6.x
Manually migrating from WAS 5.1 to WAS 6.x with TAM enabled on multiple nodes
Manually migrating from WAS 5.1 to WAS 6.x with TAM enabled on a stand-alone server
Related concepts
Authorization providers
TAM integration as the JACC provider
JACC providers
JACC support in WAS
Related tasks
Authorizing access to J2EE resources using TAM
Propagating security policy of installed applications to a JACC provider using wsadmin scripting
Authorizing access to J2EE resources using TAM
Related Reference
External Java Authorization Contract for Containers provider settings
Interfaces that support JACC
Security authorization provider troubleshooting tips