Sun GlassFish Enterprise Server v3 Prelude Release Notes

Anonymous User Has Administrator Privileges After a User Is Created (Issue 6481)


Anonymous user is the default user created for the default domain. If another administrative user is added to the default domain, the anonymous user definition remains available for use. Any user can use the privileges of the anonymous user to perform Enterprise Server management tasks. This access can create a security problem for some development and production deployments.

For more information, see Issue report.


Delete the anonymous user manually.