TivoliAccessManagerTAI - cws-khuntly/WebSphere GitHub Wiki

---

date: 2025-05-08 14:54:29 created: 2025-05-08 14:54:19 categories:

• WebSphere / Server Build / Portal Server / Tivoli Access Manager / ConfigEngine

---

Obtain the appropriate PD jarfile from the target ISVA appliance and place it in ${WAS_INSTALL_ROOT}/tivoli/tam/

Login to the Portal host via SSH

Source setupCmdLine.sh:

source /opt/IBM/WebSphere/profiles/${PROFILE_NAME}/bin/setupCmdLine.sh

Export the WAS_INSTALL_ROOT variable:

declare -x WAS_INSTALL_ROOT="/opt/IBM/WebSphere/AppServer"

Configure the workplace comp property file

Configure the Policy Director runtime:

${USER_INSTALL_ROOT}/ConfigEngine/ConfigEngine.sh run-svrssl-config

Validate and configure the Trust Association Interceptor:

${USER_INSTALL_ROOT}/ConfigEngine/ConfigEngine.sh validate-pdadmin-connection

${USER_INSTALL_ROOT}/ConfigEngine/ConfigEngine.sh enable-tam-tai

Copy the Portal Server config service property file:

cp /nfs/software/WebSphere/PortalServer/properties/ConfigService.properties ${HOME}/workspace/WebSphere/PortalServer/properties/${ENV}/ConfigService.properties

Update the ConfigService.properties file, uncommenting and modifying the following values:

 - Name: redirect.logout

 - Value: true

 - Name: redirect.logout.ssl

 - Value: true

Update properties as configured:

${USER_INSTALL_ROOT}/ConfigEngine/ConfigEngine.sh update-properties