InfoCenter Home >
6: Administer applications >
6.6: Tools and resources quick reference >
6.6.18: Securing applications >
6.6.18.1a.2: About setting application security defaults with the Java administrative console

6.6.18.1a.2: About setting application security defaults with the Java administrative console

Configure Global Settings task:

   1. Enable security
2. Set application security defaults
   3. Specify how to authenticate users
   4. Provide details about the authentication mechanism

Use the Application Defaults tab of the Configure Global Settings wizard to specify the default security realm and challenge type for applications. These values provide a starting configuration for applications, but some can be refined on an application-by-application basis. For example, you can set a default challenge type for authentication but allow some applications to use different challenge types.

Selecting a default security realm

All applications need to belong to a security realm. In Version 3, all applications must belong to the same security realm.

The administrator can specify a default realm. When a particular application is configured, the administrator can override the default realm by specifying a different realm for the application.

Single Sign-On (SSO) support is applied to realms. If a user who has logged on to one realm tries to access an application in another realm, the user will be prompted to log into the second realm.

Selecting a default challenge type

The challenge type specifies how users will be challenged for authentication credentials when they try to access a resource or application.

Challenge types range from no challenge, a user ID and password, or a digital certificate to a custom challenge using Web pages.

Go to previous article: About specifying how to authenticate users with the Java administrative console Go to next article: About enabling security with the Java administrative console

 

 
Go to previous article: About specifying how to authenticate users with the Java administrative console Go to next article: About enabling security with the Java administrative console