com.tivoli.pd.jcfg.PDJrteCfg utility for Tivoli Access Manager single sign-on

The com.tivoli.pd.jcfg.PDJrteCfg utility configures Tivoli® Access Manager Runtime for Java™. This utility enables Java applications to use the Tivoli Access Manager policy and authorization servers.

Purpose

Important: If you are using the WebSphere® Application Server Network Deployment product, run the pdjrtecfg utility first on the deployment manager. Then, run the script on the other nodes in the cell.

Syntax

java com.tivoli.pd.jcfg.PDJrteCfg -action {config | unconfig} -cfgfiles_path
configuration_file_path -host policy_server_host -was -java_home jre_path

Parameters

-action {config|unconfig}
Specifies the action to be performed. Actions include:
config
Use to configure the Tivoli Access Manager Runtime for Java component.
unconfig
Use to reconfigure the Tivoli Access Manager Runtime for Java component.
-cfgfiles_path
Specifies where the generated configuration files will be placed.
Note: This parameter is required.
-host policy_server_host
Specifies the policy server host name.

Valid values for policy_server_host include any valid IP host name.

Examples include:

host = libra
host = libra.dallas.ibm.com

-was
Notifies Tivoli Access Manager Runtime for Java that the WebSphere Application Server version is being configured so it is not necessary to perform certain steps such as copying the Java security jar files and PD.jar file since they were already placed in the appropriate directory by the WebSphere Application Server installer.
-java_home jre_path
Specifies the fully qualified path to the Java runtime (such as the directory ending in jre). If this parameter is not specified, the home directory for the jre in the PATH statement is used. If the home directory for the jre is not in the PATH statement, this utility can create an incorrect parameter in the output files.

Comments

This command copies Tivoli Access Manager Java libraries to a library extensions directory that exists for a Java runtime that has already been installed on the system.

You can install more than one Java Runtime Environment (JRE) on a given machine. The pdjrtecfg command can be used to configure the Tivoli Access Manager Runtime for Java component independently for each of the JRE configurations.

Example

${JAVA_HOME}/bin/java
-Dfile.encoding=ISO8859-1 \
-Dws.output.encoding=CP1047 \
-Xnoargsconversion \
-Dpd.home=${WAS_HOME}/java/jre/PolicyDirector \
-cp ${WAS_HOME}/java/jre/lib/ext/PD.jar \
com.tivoli.pd.jcfg.PDJrteCfg \
-action config \
          -cfgfiles_path ${WAS_HOME}/java/jre \
          -host gary.us.ibm.com \
          -java_home ${JAVA_HOME}

where:
-Dws.output.encoding
Is used to enable z/OS® to display all of its messages and errors in a readable format.
-Dpd.home
Indicates where Tivoli Access Manager Runtime for Java has been installed. For WebSphere Application Server, this is java.home/PolicyDirector



Related tasks
Configuring single sign-on capability with Tivoli Access Manager or WebSEAL
Related information
Application Programming Interface documentation for IBM Tivoli Access Manager V2R1
The pdjrtecfg utility for IBM Tivoli Access Manager V2R1
Reference topic    

Terms of Use | Feedback

Last updated: Sep 20, 2010 10:03:57 PM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=vela&product=was-nd-zos&topic=rsectampdjrtecfg
File name: rsec_tampdjrtecfg.html