To enable the Java Security Manager for WebLogic Server, configure the Node manager for the WebLogic server using the admin console, and add the required servers to the machine you are configuring. From the Node manager choose Servers -> controls and select the server you want to start in secure mode. From that server’s Start tab, add the following java argument:

-Djava.security.manager

Specify the location of your policy file. The default policy file for the WebLogic server is located here:

$WL_HOME/wlserver/server/lib/weblogic.policy

The security policies implemented by Java security manager are configured in weblogic.policy.

You will need to override the dynamo home and dynamo root system properties in the policy file. For example, replace $atg.dynamo.root with C:\ATG11.1 and $atg.dynamo.home with C:\ATG11.1\home. Other system properties in the policy file are dynamically replaced.

You can view all the security violations at one time using the WebLogic security manager implementation, unlike the standard Java Security Manager where you would have to resolve security violations one at a time.

To use the WebLogic security manager use the following arguments:

-Djava.security.manager=weblogic.security.psm.PrintingSecurityManager
-Doracle.weblogic.security.manager.printing.file=file locations

Oracle Commerce Platform weblogic.policy file

Unique permissions have been added to the Oracle Commerce Platform weblogic.policy file for your reference. This file and other policy files are in the following location:

$DYNAMO_HOME/home/policy/

You should regularly review your security policy files to accommodate any updates to your application server.