Jazz™ Team Server for System z uses J2EE security roles for authentication, access to protected resources, and authorization for some repository operations. These roles are mapped to users and groups within a realm configured in the application server. When the server is configured to use the Apache Tomcat user database realm or an LDAP realm, Jazz Team Server for System z can import users from the realm into the repository and display the roles (groups) that a user has. It is possible to configure your own realm for authentication and group membership in IBM WebSphere Application Server or Apache Tomcat. When you use that option, Jazz Team Server for System z cannot import users or display their roles, but those roles are used for authentication and authorization.