To enable the Java Security Manager for WebLogic Server, configure the Node manager for the WebLogic server using the admin console, and add the required servers to the machine you are configuring. From the Node manager choose Servers -> controls
and select the server you want to start in secure mode. From that server’s Start tab, add the following java argument:
-Djava.security.manager
Specify the location of your policy file. The default policy file for the WebLogic server is located here:
$WL_HOME/wlserver/server/lib/weblogic.policy
The security policies implemented by Java security manager are configured in weblogic.policy
.
You will need to override the dynamo home and dynamo root system properties in the policy file. For example, replace $atg.dynamo.root
with C:\ATG11.1
and $atg.dynamo.home
with C:\ATG11.1\home
. Other system properties in the policy file are dynamically replaced.
You can view all the security violations at one time using the WebLogic security manager implementation, unlike the standard Java Security Manager where you would have to resolve security violations one at a time.
To use the WebLogic security manager use the following arguments:
-Djava.security.manager=weblogic.security.psm.PrintingSecurityManager -Doracle.weblogic.security.manager.printing.file=file locations
Oracle Commerce Platform weblogic.policy file
Unique permissions have been added to the Oracle Commerce Platform weblogic.policy
file for your reference. This file and other policy files are in the following location:
$DYNAMO_HOME/home/policy/
You should regularly review your security policy files to accommodate any updates to your application server.