To Allow Access to the IBM WebSphere Application Server 5.1.1 Administration Console (Sun Java System Access Manager Policy Agent 2.2 Guide for IBM WebSphere Application Server 5.1.1)

Sun Java System Access Manager Policy Agent 2.2 Guide for IBM WebSphere Application Server 5.1.1

Previous: To Install the Agent Filter for the IBM WebSphere Application Server 5.1.1 Administration Console
Next: To Verify Access to the IBM WebSphere Application Server 5.1.1 Administration Console

To Allow Access to the IBM WebSphere Application Server 5.1.1 Administration Console

This task involves creating the corresponding URL policies in the Access Manager Console so that a specific user, group, or role has access to the IBM WebSphere Application Server 5.1.1 Administration Console application.

Create URL policies that will provide the appropriate subjects with access to the Administration Console application.

Ensure that you give access to both HTTP and HTTPS based administration URLs.

For example, you might allow the manager role access to the IBM WebSphere Application Server 5.1.1 Administration Console by setting the following URL patterns:
```
http://host1.subexample.example.com:9060/*
https://host1.subexample.example:9043/*
```
This example assumes that the IBM WebSphere Application Server 5.1.1 Administration Console is running with the HTTP protocol set at port 9060 and with the HTTPS protocol set at 9043. All other changes to the agent configuration to trap logout events have already been configured by the agent installer in J2EE agent AMAgent.properties file. Note that the agent is configured in the most restrictive mode ALL at this point.