Sun Java System Web Server allows you to restrict access using flat file authentication. As of the 6.1 release, Sun Java System Web Server now supports the Java Security Manager. The Security Manager is disabled by default when you install the product, which may improve performance significantly for some types of applications. Enabling the Security Manager may improve security by restricting the rights granted to your J2EE Web applications. To enable the Security Manager, `uncomment' entries in the server.xml file:
where instance_dir is the path to the installation directory of this server instance.
For more information about server.xml, see Sun Java System Web Server 6.1 SP4 Administrator’s Configuration File Reference.