Manually configuring Tivoli Access Manager only for authentication
on Websphere Application Server 6.x
You can configure Tivoli Access Manager Version 5.1 solely for
authentication.
Procedure
Disable Java Authorization Contract for Containers (JACC) in the
Application Server administrative console. The following steps
explain how to disable JACC:
Start the WebSphere Application Server.
Use the administrator user ID to log into the administrative
console.
Navigate to Security
> Secure administration, applications, and infrastructure
> External authorization providers and
click Default authorization.
Click OK.
Click Save.
Quit the WebSphere Application Server.
Navigate to $WAS_HOME/profiles/<profileName>/config/cells/<cellName>/.
If you want to restore Tivoli Access Manager for Authentication
at a later stage, make a backup copy of the security.xml file.
Edit the security.xml file and remove the
Tivoli Access Manager authorization table entry similar to the example that
follows. It is usually located at the end of the file.<properties
xmi:id="Property_1160607508013" name="com.ibm.websphere.security.authorizationTable"
value="com.tivoli.pdwas.websphere.PDWASAuthzManager"/>
Start WebSphere Application Server. Only Tivoli
Access Manager for Authentication is enabled.
Use IBM Suggests to retrieve related content from ibm.com and beyond, identified for your convenience.
This feature requires Internet access.
Most of the following links will take you to information that is not part of the formal product documentation and is provided "as is." Some of these links go to non-IBM Web sites and are provided for your convenience only and do not in any manner serve as an endorsement by IBM of those Web sites, the material thereon, or the owner thereof.
Last updated: Feb 19, 2011 5:25:36 AM CST http://www14.software.ibm.com/webapp/wsbroker/redirect?version=v610web&product=was-nd-mp&topic=tsec_configure_tam_only File name: tsec_configure_tam_only.html