About this task
Additions and changes to console users and groups are not automatically
added to the Tivoli
® Access
Manager object space after the Java™ Authorization Contract for Containers
(JACC) provider for Tivoli Access Manager is configured. Changes to console
users and groups are saved in the
admin-authz.xml file and this file
must be migrated before any changes take effect. The JACC provider for Tivoli Access
Manager includes the
migrateEAR migration utility for incorporating
console user and group changes into the Tivoli Access Manager object space.
Note: The migrateEAR utility
is used to migrate the changes made to console users and groups after the
JACC provider for Tivoli Access Manager is configured. The utility does
not need to run for changes and additions to console users and groups made
prior to the configuration of the JACC provider for Tivoli Access Manager because the changes
made to the admin-authz.xml and naming-authz.xml files are
automatically migrated at configuration time. Furthermore, the migration tool
does not need to run before deploying standard Java Platform, Enterprise Edition (Java EE)
applications; Java EE application policy deployment is also performed
automatically.
For example, if you wanted to migrate the admin-authz.xml file,
perform the following steps: