4.4.1 Step 1: Define the Security Level in the Configuration File

The security level for a Oracle Tuxedo domain is defined by setting the SECURITY parameter in the RESOURCES section of the configuration file to the desired security level. The following table lists the options for the SECURITY parameter.

Table 4-2 Options for the SECURITY Parameter

Option	Definition
NONE	No security is implemented in the domain. This option is the default. This option maps to the TOBJ_NOAUTH level of authentication.
APP_PW	Requires that client applications provide an application password during initialization. The tmloadcf command prompts for an application password. This option maps to the TOBJ_SYSAUTH level of authentication.
USER_AUTH	Requires an application password and performs a per-user authentication during the initialization of the client application. This option maps to the TOBJ_APPAUTH level of authentication.

In the Security sample application, the SECURITY parameter is set to APP_PW for application-level security. For information about adding security to a Oracle Tuxedo CORBA application, see Using Security in CORBA Applications in the Oracle Tuxedo online documentation.