A security realm provides all the auditing, authentication, authorization, credential mapping, role mapping, and keystore services to a WebLogic Server deployment. You can configure multiple security realms within a single WebLogic Server deployment. Use this tab to configure a new security realm.

Only one security realm is designated as the default security realm. If you want your newly configured security realm to be the default security realm, use the Security-->General tab on the Domain node to change the default security realm. For more information, see Setting the Default Security Realm.

On application deployment, WebLogic Server reads role and credential mapping information from the weblogic.xml, weblogic-ejb-jar.xml, and weblogic-ra.xml files. This information is used to populate the Authorization, Role Mapping, and Credential Mapping providers configured for the security realm. Once the role and credential mapping information is in the Authorization, Role Mapping, and Credential mapping providers, changes made through the WebLogic Server Administration Console are not persisted back to the files. Before you redeploy the application (which will happen when you redeploy it through the console, modify it on disk, or restart WebLogic Server), you need to enable the Ignore Security Data in Deployment Descriptors attribute on this tab. Otherwise, the old data in the weblogic.xml, weblogic-ejb-jar.xml, and weblogic-ra.xml files will overwrite change made through the WebLogic Server Administration Console.

The Web resource is deprecated in WebLogic Server 7.p SP02. If you wrote a custom Authorization provider that uses the Web resource (instread of the URL resource), enable the Use Deprecated Web Resource option. This option changes the runtime behavior of the Servlet container to use a Web resource rather than a URL resource when performing authorization.

Attribute Label	Description	Value Constraints
Name	The name of this configuration. WebLogic Server uses an MBean to implement and persist the configuration. Attribute: Name	Configurable: yes Readable: yes Writable: yes
UseDeprecatedWebResource	Beginning in WebLogic Server 7.0 SP1 WebResources have been deprecated and will not be used. Instead of WebResources, the more functional URLResources will be used. If this realm has an authorization provider that requires the older WebResources, set this to true. Attribute: UseDeprecatedWebResource	Default: false Readable: yes

Attribute Label

Description

Value Constraints

Name

The name of this configuration. WebLogic Server uses an MBean to implement and persist the configuration.

Attribute: Name

Configurable: yes

Readable: yes

Writable: yes

UseDeprecatedWebResource

Beginning in WebLogic Server 7.0 SP1 WebResources have been deprecated and will not be used. Instead of WebResources, the more functional URLResources will be used. If this realm has an authorization provider that requires the older WebResources, set this to true.

Attribute: UseDeprecatedWebResource

Default: false

Readable: yes