Configure the WebLogic Adjudication provider

An Adjudication provider resolves authorization conflicts by weighing each Authorization provider's access decision and determining whether to permit access to the requested resource. If you only have one Authorization provider configured in the security realm and it is the WebLogic Authorization provider, then an ABSTAIN returned from the single Authorization provider is treated as a DENY. You can only have one Adjudication provider configured in a security realm, and you must have one Adjudication provider.

WebLogic Server offers the following types of Adjudication providers:

The WebLogic Adjudication provider is the standard Adjudication provider for the WebLogic Security Framework. Note that the Administration Console refers to the WebLogic Adjudication provider as the Default Adjudicator.
The Realm Adapter Adjudication provider accesses user and group information stored in compatibility security realms.

To configure the WebLogic Adjudication provider:

If you have not already done so, in the Change Center of the Administration Console, click Lock & Edit (see Use the Change Center).
In the left pane, select Security Realms and click the name of the realm you are configuring (for example, myrealm).
Select Providers > Adjudication and click the name of the Adjudication provider.
Optionally, select Configuration > Provider Specific and set Require Unanimous Permit. Do this if you want to require PERMIT to be returned from all Authorization providers in the realm in order to permit access to the requested resource.
Click Save to save your changes.
To replace the Adjudication provider, click the Replace button and configure a new Adjudication provider.
To activate these changes, in the Change Center, click Activate Changes.
Reboot WebLogic Server.

Administration Console Online Help

Configure the WebLogic Adjudication provider