Allowing Access to the WebSphere Application Server 6.1 Administration Console (Sun Java System Access Manager Policy Agent 2.2 Guide for IBM WebSphere Application Server 6.1)

Sun Java System Access Manager Policy Agent 2.2 Guide for IBM WebSphere Application Server 6.1

Previous: Installing the Agent Filter for the WebSphere Application Server 6.1 Administration Console
Next: Verifying Access to the WebSphere Application Server 6.1 Administration Console

Allowing Access to the WebSphere Application Server 6.1 Administration Console

This task involves creating the corresponding URL policies in the Access Manager Console so that a specific user, group, or role has access to the WebSphere Application Server 6.1 Administration Console.

Create URL policies that will provide the appropriate subjects with access to the Administration Console.

Ensure that you give access to both HTTP and HTTPS based administration URLs.

For example, you might allow the wasadminrole role access to the WebSphere Application Server 6.1 Administration Console by setting the following URL patterns:

http://host1.subexample.example.com:9060/*
https://host1.subexample.example:9043/*

In this example, the WebSphere Application Server 6.1 Administration Console is running with the HTTP protocol set at port 9060 and the HTTPS protocol set at 9043. All other changes to the agent configuration to trap logout events have already been configured by the agent installer in the AMAgent.properties file. Note that the agent is configured in the most restrictive mode ALL at this point.