Use the Security page to set security properties for the selected GlassFish Server instance or cluster.
The Security page contains the following options.
The name of the configuration to which the settings on this page apply. This field is read only.
If this option is selected, the security manager for the domain is enabled. This option is disabled by default.
When this option is enabled, a JVM option, -Djava.security.manager, will be added to the JVM setting of the GlassFish Server. See To Configure the JVM Options. You must restart the server to enable this change.
Ensure that you have granted correct permissions for all applications. You can turn off the security manager to enhance performance.
If this option is enabled, the server will load and run all the audit modules specified in the Audit Modules setting. If the option is disabled, the server will not access audit modules. This option is disabled by default.
The active (default) realm that the server uses for authentication. Applications use this realm unless their deployment descriptor specifies a different realm. All configured realms appear in the list. The default value is file.
Specifies the default user name. The server uses this user name when no other principal is provided. If you type a value in this field, type the corresponding password in the Default Principal Password field.
A default principal is not required for normal server operation.
Password of the default principal specified in the Default Principal field. A default principal is not required for normal server operation.
The class name of a configured JACC provider. The default value is default.
The audit provider modules that will be used by the audit subsystem if audit logging is enabled. By default, the server uses an audit module named default. For information on creating new audit modules, see To Create an Audit Module.
If this option is selected, default principal-to-role mapping is applied to applications that do not have an application-specific mapping.
Specifies a custom implementation of the java.security.Principal class used in the default principal-to-role mapping, if default principal-to-role mapping is enabled.
Additional security properties for the server.
Valid properties are dependent on the type of realm selected in the Default Realm field and are typically specified when you edit a realm. For details, see the following topics: