The MBean that represents configuration attributes for the security realm.
A security realm contains a set of security configuration settings, including the list of security providers to use (for example, for authentication and authorization).
Code using security can either use the default security realm for the domain or refer to a particular security realm by name (by using the JMX display name of the security realm).
One security realm in the WebLogic domain must have the
DefaultRealm
attribute set to true. The security realm
with the DefaultRealm
attribute set to true is used as
the default security realm for the WebLogic domain. Note that other
available security realms must have the DefaultRealm
attribute set to false.
When WebLogic Server boots, it locates and uses the default security realm. The security realm is considered active since it is used when WebLogic Server runs. Any security realm that is not used when WebLogic Server runs is considered inactive. All active security realms must be configured before WebLogic Server is boots.
Since security providers are scoped by realm, the
Realm
attribute on a security provider must be set to
the realm that uses the provider.
If you use the getMBeanInfo
operation in MBeanTypeServiceMBean, supply the following value as this MBean's fully qualified interface name:
weblogic.management.security.RealmMBean
In addition to accessing this MBean by invoking a factory method, you can also access this MBean from the following MBean attributes:
|
This section describes attributes that contain child MBeans. For more information about the MBean hierarchy, refer to WebLogic Server MBean Data Model.
Returns the Adjudication provider for this security realm.
Factory Methods | createAdjudicator
(java.lang.String type)
Factory methods do not return objects. |
Privileges | Read only |
Type | AdjudicatorMBean |
Returns the Auditing providers for this security realm (in invocation order).
Factory Methods | createAuditor
(java.lang.String type)
Factory methods do not return objects. |
Lookup Operation | lookupAuditor(String name)
Returns a |
Privileges | Read/Write |
Type | AuditorMBean[] |
Returns the Authentication providers for this security realm (in invocation order).
Factory Methods | createAuthenticationProvider
(java.lang.String type)
Factory methods do not return objects. |
Lookup Operation | lookupAuthenticationProvider(String name)
Returns a |
Privileges | Read/Write |
Type | AuthenticationProviderMBean[] |
Returns the Authorization providers for this security realm (in invocation order).
Factory Methods | createAuthorizer
(java.lang.String type)
Factory methods do not return objects. |
Lookup Operation | lookupAuthorizer(String name)
Returns a |
Privileges | Read/Write |
Type | AuthorizerMBean[] |
Returns the CertPath Builder provider in this security realm
that will be used by the security system to build certification
paths. Returns null if none has been selected. The provider will be
one of this security realm's CertPathProviders
.
Factory Methods | No explicit creator method. The child shares the lifecycle of its parent. |
Privileges | Read/Write |
Type | CertPathBuilderMBean |
Returns the Certification Path providers for this security realm (in invocation order).
Factory Methods | createCertPathProvider
(java.lang.String name)
Factory methods do not return objects. |
Lookup Operation | lookupCertPathProvider(String name)
Returns a |
Privileges | Read/Write |
Type | CertPathProviderMBean[] |
Returns the Credential Mapping providers for this security realm (in invocation order).
Factory Methods | createCredentialMapper
(java.lang.String type)
Factory methods do not return objects. |
Lookup Operation | lookupCredentialMapper(String name)
Returns a |
Privileges | Read/Write |
Type | CredentialMapperMBean[] |
Returns the KeyStore providers for this security realm (in invocation order).
Deprecated.
Factory Methods | createKeyStore
(java.lang.String name)
Factory methods do not return objects. |
Lookup Operation | lookupKeyStore(String name)
Returns a |
Privileges | Read/Write |
Type | KeyStoreMBean[] |
Returns the Role Mapping providers for this security realm (in invocation order).
Factory Methods | createRoleMapper
(java.lang.String type)
Factory methods do not return objects. |
Lookup Operation | lookupRoleMapper(String name)
Returns a |
Privileges | Read/Write |
Type | RoleMapperMBean[] |
Returns the User Lockout Manager for this security realm.
Factory Methods | No explicit creator method. The child shares the lifecycle of its parent. |
Privileges | Read only |
Type | UserLockoutManagerMBean |
This section describes the following attributes:
Returns the types of Adjudication providers that may be created
in this security realm, for example,
weblogic.security.providers.authorization.DefaultAdjudicator
.
Use this method to find the available types to pass to
createAdjudicator
Privileges | Read only |
Type | class java.lang.String[] |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Returns the types of Auditing providers that may be created in
this security realm, for example,
weblogic.security.providers.audit.DefaultAuditor
. Use
this method to find the available types to pass to
createAuditor
Privileges | Read only |
Type | class java.lang.String[] |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Returns the types of Authentication providers that may be
created in this security realm, for example,
weblogic.security.providers.authentication.DefaultAuthenticator
.
Use this method to find the available types to pass to
createAuthenticationProvider
Privileges | Read only |
Type | class java.lang.String[] |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Returns the types of Authorization providers that may be created
in this security realm, for example,
weblogic.security.providers.authorization.DefaultAuthorizer
.
Use this method to find the available types to pass to
createAuthorizer
Privileges | Read only |
Type | class java.lang.String[] |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Returns the types of Certification Path providers that may be
created in this security realm, for example,
weblogic.security.providers.pk.WebLogicCertPathProvider
.
Use this method to find the available types to pass to
createCertPathProvider
Privileges | Read only |
Type | class java.lang.String[] |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Returns whether application role mappings are combined by the J2EE containers.
Available Since | Release 9.0.0.0 |
Privileges | Read/Write |
Type | boolean |
Default Value | true |
Returns the types of Credential Mapping providers that may be
created in this security realm, for example,
weblogic.security.providers.credentials.DefaultCredentialMapper
.
Use this method to find the available types to pass to
createCredentialMapper
Privileges | Read only |
Type | class java.lang.String[] |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Returns whether this security realm is the Default realm for the
WebLogic domain. Deprecated in this release of WebLogic Server and
replaced by
weblogic.management.configuration.SecurityConfigurationMBean.getDefaultRealm
.
Deprecated.
Privileges | Read/Write |
Type | boolean |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Returns whether credential mapping deployment calls on the security system are ignored or passed to the configured Credential Mapping providers.
Deprecated.
Privileges | Read/Write |
Type | boolean |
Returns whether policy deployment calls on the security system are ignored or passed to the configured Authorization providers.
Deprecated.
Privileges | Read/Write |
Type | boolean |
Returns whether role deployment calls on the security system are ignored or passed to the configured Role Mapping providers.
Deprecated.
Privileges | Read/Write |
Type | boolean |
Returns whether the WebLogic Principal Validator caching is enabled.
The Principal Validator is used by BEA supplied authentication providers and may be used by custom authentication providers. If enabled, the default principal validator will cache WebLogic Principal signatures.
Privileges | Read/Write |
Type | boolean |
Default Value | true |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Returns whether the Web and EJB containers should call the security framework on every access.
If false the containers are free to only call the security framework when security is set in the deployment descriptors.
Deprecated.
Privileges | Read/Write |
Type | boolean |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Returns the types of KeyStore providers that may be created in
this security realm, for example,
weblogic.security.providers.pk.DefaultKeyStore
. Use
this method to find the available types to pass to
createKeyStore
Deprecated.
Privileges | Read only |
Type | class java.lang.String[] |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Returns the maximum size of the LRU cache for holding WebLogic
Principal signatures. This value is only used if
EnableWebLogicPrincipalValidatorCache
is set to
true
Privileges | Read/Write |
Type | java.lang.Integer |
Default Value | 500 |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
The name of this configuration. WebLogic Server uses an MBean to implement and persist the configuration.
Privileges | Read only |
Type | java.lang.String |
Default Value | Realm |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Returns the types of Role Mapping providers that may be created
in this security realm, for example,
weblogic.security.providers.authorization.DefaultRoleMapper
.
Use this method to find the available types to pass to
createRoleMapper
Privileges | Read only |
Type | class java.lang.String[] |
Redeploy or Restart required | Changes take effect after you redeploy the module or restart the server. |
Returns the default security deployment model for applications deployed in this security realm.
Privileges | Read/Write |
Type | java.lang.String |
Default Value | DDOnly |
Legal Values |
|
Returns whether security data in the deployment descriptor is validated. This setting establishes the default value for applications deployed using the realm.
Privileges | Read/Write |
Type | boolean |
This section describes the following operations:
|
Checks that the realm is valid.
Deprecated.
Operation Name | "validate" |
Parameters | null |
Signature | null |
Returns |
void
|
weblogic.management.utils.ErrorCollectionException
Operation Name | "wls_getDisplayName" |
Parameters | null |
Signature | null |
Returns | String
|