Some of the Access Manager components such as Service Management, User Management, and so forth, require an identity for the client (application) to read configuration data and to identify the client. The identity for the client can be set up by providing either a username and password that can be authenticated, or by providing an implementation for the interface com.sun.identity.security.AppSSOTokenProvider that returns a single-sign-on (SSO) token.
The properties to set the username, password and shared secret are:
com.sun.identity.agents.app.username
com.iplanet.am.service.password
com.iplanet.am.service.secret
The property to set the SSO Token provider:
com.sun.identity.security.AdminToken
Some of the configuration attributes (such as password) are encrypted and stored in the data store. If such attributes have to be decrypted by the client, the following property must be set, and must be the same as that of the Access Manager Server:
am.encryption.pwd