Why and when to perform this task
Additions and changes to console users and groups are not automatically added to the Tivoli Access Manager object space after the Java Authorization Contract for Containers (JACC) provider for Tivoli Access Manager is configured. Changes to console users and groups are saved in the admin-authz.xml file and this file must be migrated before any changes take effect. The JACC provider for Tivoli Access Manger includes the migrateEAR migration utility for incorporating console user and group changes into the Tivoli Access Manager object space.To migrate the admin-authz.xml file:
Steps for this task
migrateEAR -j “app_server_root/profiles/profile_name/config/cells/cell_name/admin-authz.xml” -a sec_master -p password -w wsadmin -d o=ibm,c=us -c file:/”app_server_root/java/jre/PdPerm.properties”
A status message is displayed when the migration completes. Output of the utility is logged to the pdwas_migrate.log file, which is created in the directory where the utility is run. Check the log file after each migration. If the log file displays errors, check the last recorded transaction, correct the source of the error, and rerun the migration utility. If the migration is unsuccessful, verify that you supplied the correct values for the -c and -j options.
Related tasks
Authorizing access to administrator roles
Related reference
The migrateEAR utility for Tivoli Access Manager