Are you using ActiveDomain authentication for access to Unix/Linux servers? Why not to use it for access to Java management console? It's not such difficult, just to configure PAM the right way. I have found this idea on Symantec discussion forum but...