Roles and Policies: Policies
Buttons Column Display Related Tasks Related Topics
Use this table to access or create security policies for this security realm. The Root Level Policies node in the Name column provides access to root level policies (which apply to all resources of a given type). All other nodes provide access to policies that apply to resource instances.
- This table does not provide access to policies for instances of JNDI resources or Work Context resources. To see these policies, view the Security tab for each JNDI node or Work Context object instance.
- If you imported policies for Web applications or EJBs from deployment descriptors using the Install Application Assistant, you must activate changes to access the policies.
- To view or modify JMX policies in the Administration Console, you must first delegate MBean authorization to the realm's Authorization providers.
Name Description Name
Organizes all of the domain's resources in a hierarchical tree control. Resource types are listed under the Root Level Policies node. Resource instances are listed under the appropriate node.
For example, all EARs that have been deployed are listed under the Deployments node. If a policy has already been defined for MedRecEAR, its Policy column will contain a View Policy link. Otherwise, next to the Name column, the table displays a radio button. To create a policy for MedRecEAR (which will be inherited by all of its modules) click the radio button and click the Create Policy button.
Note the following about resource instances:
- The JDBC and JMS nodes contain JDBC and JMS system modules. If you deployed JDBC or JMS modules as part of an application, those modules are listed under the Deployments node.
- To secure URL patterns in a Web application that is using the Custom Roles and Policies security model, you create the URL pattern and then you create a policy for it. All secured URL patterns are listed in the table under the parent Web application's URL Patterns node. To modify the policy for an existing URL pattern, click the View Policy link in its Policy column. To create a new URL pattern, click the name of the URL Patterns node.
- For more information about resources and what you can secure in each resource, see "Types of Resources" under the Related Topics heading of this help topic.
Indicates the type of WebLogic resource that is listed in the Name column.
If you have defined policy conditions for the resource that is specified in the Name column, this column displays a hyperlink that enables you to view or modify the conditions.
Name Description Create Policy
Enables you to create policy conditions for the resource that is specified in the Name column. The button is enabled when both of the following are true:
- You have not defined policy conditions for a resource that is displayed in the Name column.
- You select the radio button next to a resource for which you have not defined conditions.
- Manage security policies
- Access policies for JNDI resources
- Access policies for WorkContext resources
- Delegate MBean authorization to the realm