By default, the Tomcat 6.0 version 3.0 agent protects the Tomcat Manager, Administration, and Host Manager web applications with J2EE security. This default configuration is set by the agent installer, which sets the Agent Filter Mode (com.sun.identity.agents.config.filter.mode property) to J2EE_POLICY in the Tomcat 6.0 version 3.0 agent configuration.
If you prefer, you can protect the Manager, Administration, and Host Manager web applications with a filter mode other than J2EE_POLICY, depending on the requirements for your deployment. For example, you can change the filter mode for these applications to URL_POLICY or ALL.
Log in to the OpenSSO Enterprise Administration Console.
Click Access Control, realm-name, Agents, J2EE, and then the name of the Tomcat 6.0 version 3.0 agent.
Click General and add the Agent Filter Mode as required by your deployment for:
Manager web application (manager)
Administration web application (admin)
Host Manager web application (host-manager)
The corresponding properties are:
com.sun.identity.agents.config.filter.mode[manager] com.sun.identity.agents.config.filter.mode[admin] com.sun.identity.agents.config.filter.mode[host-manager]
The com.sun.identity.agents.config.filter.mode property is not hot-swappable, so you must restart the OpenSSO Enterprise web container for the new values to take effect.