Use this topic to enable an external JACC provider using
the administrative console.
Before you begin
The Java™ Authorization Contract for
Containers (JACC) defines a contract between Java Platform,
Enterprise Edition (Java EE)
containers and authorization providers. This contract enables any
third-party authorization providers to plug into a Java EE
5 application server, such as WebSphere® Application Server
to make the authorization decisions when a Java EE
resource is accessed.
Procedure
- From the WebSphere Application Server
administrative console, click Security > Global security >
External authorization providers.
- Under Related items, click External JACC provider.
- The fields are set for Tivoli® Access
Manager by default. If you do not plan to use Tivoli Access
Manager as the JACC provider, replace these fields with the details
for your own external JACC provider.
- If any custom properties are required by the JACC provider,
click Custom properties under Additional properties and enter
the properties.
- On the External authorization providers panel, select the External
authorization using a JACC provider option and click OK.
- Complete the remaining steps to enable security.
- Verify that all of the changes
are synchronized across all nodes.
- In a multinode environment,
stop and start the deployment manager configuration.
Issue the following commands:
profile_root/bin/stopManager.bat
-username user_name
-password password
profile_root/bin/startManager.bat
Issue the following
commands on the Qshell command line:
profile_root/bin/stopManager
-username user_name
-password password
profile_root/bin/startManager
- Restart all servers to make these changes effective.