Configuring Tivoli Access Manager for non-z/OS® operating systems

You can configure Tivoli® Access Manager for authentication, authorization, and with a credential vault with one task or you can configure them individually.

Choose the appropriate task to configure Tivoli Access Manager:

Creating the AMJRTE properties file
You must create the AMJRTE properties files before configuring Tivoli Access Manager for authentication, authorization, Credential vault, and/or user provisioning.
Configuring Tivoli Access Manager for authentication, authorization, and the Credential Vault
This section explains how to configure authentication, authorization, and the vault adapter together.
Configuring Tivoli Access Manager to perform authentication only
IBM WebSphere Portal Express runs on IBM WebSphere Application Server, which can use Trust Association Interceptors (TAIs) to provide third-party authentication. WebSphere Portal Express and WebSphere Application Server support a TAI that is provided by Tivoli. If you use Tivoli Access Manager to perform authorization for WebSphere Portal Express, you must also use Tivoli Access Manager to perform the authentication. Using Tivoli Access Manager to perform only authorization is not supported.
Configuring Tivoli Access Manager to perform authorization
You can configure IBM Tivoli Access Manager to perform authorization as an independent task from configuring Tivoli Access Manager to perform authentication, but you must configure both tasks. Using Tivoli Access Manager to perform only authorization is not supported.
Configuring the Credential Vault adapter for Tivoli Access Manager
You can use IBM Tivoli Access Manager in the IBM WebSphere Portal Express Credential Vault service. WebSphere Portal Express includes a vault adapter to access the Tivoli Access Manager Global Sign-on (GSO) lockbox. Any existing Tivoli resource or resource credentials can be used in your portlets that access the credential vault service without any additional configuration. In addition, the credential vault service and credential vault management portlet can create new or update existing GSO lockbox entries.
Removing Tivoli Access Manager
After you have installed and used IBM Tivoli Access Manager, you may find that you no longer require its use. You can then remove it from the IBM WebSphere Portal Express environment and restore authentication capabilities to IBM WebSphere Application Server and authorization capabilities to WebSphere Portal Express.