Configure security principals

In a WebLogic resource adapter, you can either have a single security identity that can perform all functions, or use separate identities for separate classes of functions. You can define the following four types of security identities in the weblogic-ra.xml deployment descriptor:

default principal: a security principal that can perform all resource adapter tasks
run-as principal: a security principal used by calls from the connector container into the resource adapter code during connection requests.
run-work-as principal: a security principal used for Work instances launched by the resource adapter.
manage-as principal: a security principal used for resource adapter management tasks, such as startup, shutdown, testing, and transaction management.

For more information, see Configuring Security Identities for Resource Adapters.

To configure security principals for a resource adapter installed on WebLogic Server:

If you have not already done so, in the Change Center of the Administration Console, click Lock & Edit (see Use the Change Center).
In the left pane of the Console, select Deployments.
In the Deployments table, select the resource adapter you want to configure.
Select Security > Principals.
For each security identity, specify the principal for that security identity. This can be either:
1. anonymous (no security identity needed)
2. the default security identity
3. the security identity of the calling code (Caller Id)
4. a WebLogic user name
Click Save.

Administration Console Online Help

Configure security principals