Managing users on Jazz Authorization Server
Jazz® Authorization Server is based on the IBM® WebSphere Liberty server. Because Jazz Authorization Server authenticates users, it must be configured with a user registry.
WebSphere Liberty server
WebSphere Liberty server has capabilities similar to the full WebSphere® Application Server; it can be configured to use a Lightweight Directory Access Protocol (LDAP) registry, or users can be defined in local files. For information about configuring authentication in WebSphere Liberty server, see Configuring a user registry for Liberty.
JazzAuthServer directory
Installation of Jazz Authorization Server creates a
directory that is named JazzAuthServer in the installation location. The
JazzAuthServer_install_dir/wlp/usr/servers/jazzop/defaults
directory includes sample files for both a basic, file-based user registry and an LDAP user
registry.
- The localUserRegistry.xml template file defines only the
ADMIN
andclmadmin
users, with passwords the same as the user IDs. - The ldapUserRegistry.xml file is a template for an LDAP registry configuration.
To customize the files in the defaults directory, copy them up one level to
the JazzAuthServer_install_dir/wlp/usr/servers/jazzop
directory. An easy way to copy the files is to start and then stop the Jazz Authorization Server by running the
following commands from the root of
JazzAuthServer_install_dir:
start-jazz.bat
stop-jazz.bat
Depending on which method you want to use, choose one of the following user management options.