If you have enabled security for your WebSphere® Process
Server applications
and environment, it is important to understand how role-based access
and user identity affect the Recovery subsystem.
- Role-based access for the failed event manager
- The failed event manager uses role-based access control for the
failed event data and tasks. Only the administrator and operator roles
are authorized to perform tasks within the failed event manager. Users
logged in as either administrator or operator can view all data associated
with failed events and can perform all tasks.
- Event identity and user permissions
- A failed event encapsulates information about the user who originated
the request. If a failed event is resubmitted, its identity information
is updated to reflect the user who resubmitted the event. Because
different users logged in as administrator or operator can resubmit
events, these users must be given permissions to the downstream components
required to process the event.
For more information about implementing security, see Securing applications
and their environment.