An Adjudication provider resolves authorization conflicts by weighing
each Authorization provider's access decision and determining whether to
permit access to the requested resource. If you only have one
Authorization provider configured in the security realm and it is the
WebLogic Authorization provider, then an ABSTAIN returned from the
single Authorization provider is treated as a DENY. You can only have
one Adjudication provider configured in a security realm, and you must
have one Adjudication provider.
WebLogic Server offers the
following types of Adjudication providers:
The WebLogic Adjudication
provider is the standard Adjudication provider for the WebLogic
Security Framework. Note that the Administration Console refers to the
WebLogic Adjudication provider as the Default Adjudicator.
The Realm Adapter Adjudication
provider accesses user and group information stored in
compatibility security realms.
To configure the WebLogic
If you have not already done so, in the Change Center of the Administration Console, click Lock & Edit (see Use the Change Center).
In the left pane, select Security Realms
and click the name of the realm you are configuring (for example,
Providers > Adjudication and click the name
of the Adjudication provider.
select Configuration > Provider Specific and
set Require Unanimous Permit. Do this if you
want to require PERMIT to be returned from all Authorization providers
in the realm in order to permit access to the requested
Save to save your changes.
To replace the Adjudication provider, click the
Replace button and configure a new Adjudication
To activate these changes, in the Change
Center, click Activate