Change to the following directory for the Tomcat 6.0 version 3.0 instance:
In the web.xml file, find the user and role information for the Administrator role.
This role is defined in the <role-name> element under the <security-role> element.
Delete the Administrator security role.
Create a new Administrator security role using the user and group that you created in the OpenSSO Enterprise Console, as described in Creating OpenSSO Enterprise Users and Groups.
<security-role> <role-name>id=admin,ou=group,dc=realm-name,dc=example,dc=com</role-name> </security-role>
Replace the Administrator role defined in the <role-name> element under the <auth-constraint> element with the contents of the <role-name> element as described in the previous step.
<auth-constraint> <role-name>id=admin,ou=group,dc=realm-name,dc=example,dc=com</role-name> </auth-constraint>
Save the web.xml file.
Restart the Tomcat 6.0 web container.