Verify imported policies

Before you begin

This task applies only when you are using the Advanced security model to import policies from a Web application or EJB deployment descriptor. To import policies, see Import security data from deployment descriptors.

To verify imported roles:

For Web applications:
1. Open the web.xml deployment descriptor for the Web application and record the content of any <url-pattern> and <http-method> elements, as well as any <role-name> subelements of the <auth-constraint> element.
2. Use the Administration console to view the security policies for the Web application. See Create policies for resource instances.
For EJBs:
1. Open the ejb-jar.xml deployment descriptor for the EJB, and record the content of any <method-permission> elements, specifically focusing on the <role-name>, <ejb-name>, and <method-name> subelements.
2. Use the Administration console to view the security policies for the EJB. See Create policies for resource instances.

Administration Console Online Help

Verify imported policies