Scott mentioned that it is easier to use JNDI for obtaining the authorization manager rather than relying on the JMX service wrapper (AuthorizationManagerService). So once the authorization manager is bound in JNDI, should be obtainable just like the securitymgr (aka AuthenticationManager plus RealmMapping)

Binding via JNDI is easier for the MC integration in this case.