Disabling embedded Tivoli Access Manager client using the administrative console

To unconfigure the JACC provider for Tivoli Access Manager, you can use the WebSphere Application Server administrative console.

Overview

Ensure that all the managed servers, including node agents, are started. Perform the following process once on the deployment management server. Information from the unconfigure operation is forwarded to managed servers, including node agents, when the server is restarted. The managed servers require their own restart for changes to take effect.

Note: It is also possible to unconfigure using the wsadmin command line utility. For details on unconfiguring the embedded Tivoli Access Manager client using the wsadmin command line utility, refer to Disabling embedded Tivoli Access Manager client using wsadmin.

Procedure

1. Restart the deployment manager process.

2. Click Security > Secure administration, applications, and infrastructure > External authorization providers.

3. Verify the default option, Default authorization, is checked, then click OK.

4. On the Secure administration, applications, and infrastructure panel, click External authorization > External JACC provider.

5. Under Additional properties, click Tivoli Access Manager Properties. The configuration screen for the JACC provider for Tivoli Access Manager is displayed.

6. Clear the Enable embedded Tivoli Access Manager option. If you want to ignore errors when unconfiguring, select the Ignore errors during embedded Tivoli Access Manager disablement option. Select this option only when the Tivoli Access Manager domain is in an irreparable state.

7. Click OK.

8. Optional: If you want security enabled without Tivoli Access Manager re-enable administrative security.

9. Optional: Synchronize all nodes.

10. Restart all WebSphere Application Server instances for the changes to take effect.

Related tasks