If you're going with Local OS authentication on Windows, the following may be helpful:
----------------------
11.3.4 – Establish security for the administration console:
11.3.4.1 – Back up the security.xml file via:
· cd D:\Program Files\WebSphere\AppServer\config\cells\server
· copy security.xml to security_orig.xml
11.3.4.2 – From a browser enter the following URL to connect to the Administration Console:
·
http://server:9090/admin
11.3.4.3 – Supply “admin_was5” as the userid.
11.3.4.4 – Specify the local userid that will have rights to login to the Administration Console after global security is turned on:
· admin console path: Security / User registries / Local OS
· Specify the userid as “admin_was5” and enter the password used by that local userid as it is defined to the OS.
· Click “Apply”, “Save”, “Save”.
11.3.4.5 – Enable global security:
· Admin console path: Security / Global security
· Ensure the following check box settings:
o Check “Enabled”
o Do NOT check “Enforce Java 2 Security”
o Do NOT check “Use Domain Qualified Userids”
o Check “SWAM”
o Check “Local OS”
· Apply the settings. If prompted supply the “admin_was5” userid and its password.
· Specify the userid as “admin_was5” and enter the password used by that local userid as it is defined to the OS.
· Click “Apply”, “Save”, “Save”.
11.3.4.6 – Ensure userid rights:
· Admin console path: System Administration / Console Users
· Add “admin_was5” with Administrator rights.
· Click “Apply”, “Save”, “Save”.
11.3.4.7 – Ensure the server1 WebSphere service starts automatically. Update the following file with the admin_was5 userid and password:
· D:/Program Files\WebSphere\AppServer\properties\soap.client.props
The section in “SOAP Client Security Enablement” and should look like this:
#----------------------------------------------------------------
# SOAP Client Security Enablement
# - security enabled status ( false[default], true )
#----------------------------------------------------------------
com.ibm.SOAP.securityEnabled=false
# JMX SOAP connector identity
com.ibm.SOAP.loginUserid=admin_was5
com.ibm.SOAP.loginPassword=xxxx <= admin_was5 password goes here
11.3.4.8 – Cycle the WebSphere service to activate all security changes.
11.3.4.9 – From a browser enter the following URL to connect to the Administration Console:
·
http://server:9090/admin
11.3.4.10 – Login to the Administration Console with the admin_was5 userid.