Use this topic to use the wsadmin tool to configure and manage Java Authentication and Authorization Service (JAAS) login entries to allow communication between realms in a multiple security domain environment.
You must meet the following requirements before configuring local operating system user registries:
Use the configureJAASLoginEntry command to configure a Java Authentication and Authorization Service (JAAS) login entry in a security domain or in the global security configuration. You can use this command to modify existing JAAS login entries or to create new login entries.
Parameter | Description |
---|---|
-loginEntryAlias | Specifies an alias that identifies the JAAS login entry in the configuration. (String, required) |
-loginType | Specifies the type of JAAS login entry of interest. Specify system for the system login type or application for the application login type. (String, required) |
-securityDomainName | Specifies the name of the security configuration. If you do not specify a security domain name, the system updates the global security configuration. (String, optional) |
-loginModules | Specifies a comma (,) separated list of login module class names. Specify the list in the order that the system calls them. (String, optional) |
-authStrategies | Optionally specifies the authentication behavior
as authentication proceeds down the list of login modules. (String,
optional) Specify one or many of the following values in a comma
(,) separated list:
|
AdminTask.configureJAASLoginEntry('[-securityDomainName testDomain
-loginType application -loginEntryAlias testLoginEntry -loginModules
"com.ibm.ws.security.common.auth.module.WSLoginModuleImpl" -authStrategies "REQUIRED"]')
AdminTask.configureLoginModule('[-securityDomainName testDomain -loginType application
-loginEntryAlias testLoginEntry -loginModule com.ibm.ws.security.common.auth.module.WSLoginModuleImpl
-customProperties ["debug=true","delegate=WSLogin"]]')
AdminConfig.save()