About this task
Additions and changes to console users and groups are not automatically
added to the Tivoli Access Manager object space after the Java Authorization
Contract for Containers (JACC) provider for Tivoli Access Manager is configured.
Changes to console users and groups are saved in the
admin-authz.xml file
and this file must be migrated before any changes take effect. The JACC provider
for Tivoli Access Manager includes the
migrateEAR migration utility
for incorporating console user and group changes into the Tivoli Access Manager
object space.
Note: The migrateEAR utility is used to migrate the changes
made to console users and groups after the JACC provider for Tivoli Access
Manager is configured. The utility does not need to run for changes and additions
to console users and groups made prior to the configuration of the JACC provider
for Tivoli Access Manager because the changes made to the admin-authz.xml and naming-authz.xml files
are automatically migrated at configuration time. Furthermore, the migration
tool does not need to run before deploying standard Java 2 Platform, Enterprise
Edition (J2EE) applications; J2EE application policy deployment is also performed
automatically.
For example, if you wanted to migrate the admin-authz.xml file,
perform the following steps: