en.help.task-securitysettings.html Maven / Gradle / Ivy
To Configure Security Settings
The Administration Console enables you to set a variety of system-wide security settings.
- In the navigation tree, expand the Configurations node.
- Under the Configurations node, click the server instance or cluster configuration for which
you want to configure Security settings.
The Configuration page opens.
- On the Configuration page, click Security.
The Security settings page for the selected configuration target opens.
- Select the Security Manager Enabled checkbox to turn on the security manager.
If this option is enabled, a JVM option, -Djava.security.manager, will be added
to the JVM settings of the GlassFish Server. See To Configure the JVM Options. You must restart
the server to enable this change.
Ensure that you have granted correct permissions for all applications. You can turn
off the security manager to enhance performance. This option is disabled by default.
- Select the Audit Logging Enabled checkbox to turn on audit logging.
If this option is enabled, the server will load and run all
the audit modules selected in the Audit Modules list. If this option is
disabled, the server will not access audit modules. This option is disabled by
default.
- From the Default Realm drop-down list, select an active realm that the server
will use for authentication.
Applications will use this realm unless their deployment descriptor specifies a different realm. All
configured realms appear in the list. The default value is file.
- Specify Default Principal information.
- In the Default Principal field, type the default user name.
The server uses this user name when no other principal is provided.
- In the Default Principal Password field, type the password of the default principal
specified in the Default Principal field.
A default principal is not required for normal server operation.
- From the JACC drop-down list, select the name of a configured JACC provider.
The default choices are default and simple. The default option is default.
For information on creating new JACC providers, see ***.
- From the Audit Modules drop-down list, select the audit provider modules that will
be used by the audit subsystem if audit logging is enabled.
By default, the server uses an audit module named default. For information on
creating new audit modules, see To Create an Audit Module.
- Select the Default Principal To Role Mapping Enabled checkbox to apply a default
principal-to-role mapping to applications that do not have an application-specific mapping.
- If you enabled default principal-to-role mapping, in the Mapped Principal Class field, type
the name of a customized java.security.Principal implementation class to be used in
the default principal-to-role mapping.
- (Optional) In the Additional Properties section, specify additional properties.
Valid properties are dependent on the type of realm selected in the Default
Realm field. Refer to the appropriate entry from the following list for the
type of realm you want to configure.
-
-
-
-
-
-
- To add a property, click the Add Property button. In the blank row
that appears, type the property name in the Name field, and type
the property value in the Value field.
- To modify a property, edit that property's Value field.
- To delete a property, select the checkbox to the left of the
Name field of the property that you are deleting, then click the Delete
Properties button.
- Click Save.
See Also
Copyright © 2010, Oracle and/or its affiliates. All rights reserved. Legal Notices