Securing JNDI Access

By default, the JNDI used for the Oracle WebLogic Domain is open to read access by any valid user in the domain. This behavior may not be appropriate as dictated by the security policies at your site. It is possible to set the domain permissions, after installation, to minimize access to the JNDI.

Note: The instructions in this section use the JNDI facilities described in the Access policies for JNDI resources section and Resource Types You Secure Using Roles and Policies of the Oracle WebLogic documentation. Refer to that section before configuring the security of the JNDI.

The following are included:

• Securing Product Access

• Providing Additional Access to the JNDI