Procedure
WebSphere® Application Server supports plugging
in a custom JAAS login module before or after the WebSphere Application
Server system login module. However, WebSphere Application
Server does not support the replacement of the WebSphere Application
Server system login modules, which are used to create the WSCredential
credential and WSPrincipal principal in the Subject. By using a custom
login module, you can either make additional authentication decisions
or add information to the Subject to make additional, potentially
finer-grained, authorization decisions inside a Java Platform,
Enterprise Edition (Java EE)
application.