Deploying and starting Jazz Authorization Server
After you complete the prerequisite tasks, deploy and start the Jazz Authorization Server.
Restriction: Jazz Authorization Server does
not support basic authentication. Authentication methods supported by Jazz Authenticated Server are
- Client Certificates, Form Based Authentication, Security Assertion Markup Language (SAML), and
OpenID Connect (OIDC).
Note: Jazz Authorization Server is bundled with the Apache Derby database, but setting up a cluster of Jazz Authorization Server only
supports enterprise databases such as Db2®, Oracle,
or SQL Server.
After you configure a user registry, create a self-signed security certificate and keystore configuration for the Jazz Authorization Server, and make any other customizations to the WebSphere Liberty profile, deploy and start the server.
- Customize Liberty server for SameSite.
- Run the start-jazz script in the root installation folder.
- Verify that the Jazz Authorization Server is running.
- Verify that the user registry is configured correctly.
You can also configure ELM applications to run as Windows services. See Running ELM applications as Windows services for more information.
Verify that the Jazz Authorization Server is running
To verify that the server is running, do the following:
- Open a web browser and go to the following URL:
https://host.example.com:9643/oidc/endpoint/jazzop/.well-known/openid-configuration
A JSON document that contains configuration parameters (mainly endpoint URLs) is displayed.
Verify that the user registry is configured correctly
To verify that the user registry is configured correctly, complete the next steps.
- Open a web browser and go to the following URL:
https://host.example.com:9643/oidc/endpoint/jazzop/registrationYou are prompted for login credentials.
- Specify the authentication credentials of a user in your user registry who has Jazz administrative privileges. Assuming that no applications are registered, a small JSON document is displayed.