Use this task to assign users to naming roles by using the administrative
console.
About this task
The following steps are needed to assign users
to naming roles. In the administrative console, click Environment > Naming,
and click CORBA Naming Service Users or CORBA Naming Service Groups.
Procedure
- Click Add on the CORBA Naming Service Users or the CORBA
Naming Service Groups panel.
- To add a new naming service user, enter a user identity in the User field,
highlight one or more naming roles, and click OK. If no validation
errors occur, the specified user is displayed with the assigned security role.
- To add a new naming service group, either select Specify group and
enter a group name or select Select from special subject and then select EVERYONE.
Click OK. If no validation errors occur, the specified group or special
subject is displayed with the assigned security role.
- To remove a user or group assignment, go to the CORBA Naming
Service Users or CORBA Naming Service Groups panel. Select the
check box next to the user or group that you want to remove and click Remove.
- To manage the set of users or groups to display, expand the Filter folder
on the right panel, and modify the filter text box. For example, setting the
filter to user* displays only users with the user prefix.
- After modifications are complete, click Save to save the
mappings. Restart the server for the changes to take effect.
Example
The default naming security policy is to grant all users read
access to the CosNaming space and to grant any valid user the privilege to
modify the contents of the CosNaming space. You can perform the previously
mentioned steps to restrict user access to the CosNaming space. However, use
caution when changing the naming security policy. Unless a Java 2 Platform,
Enterprise Edition (J2EE) application has clearly specified its naming space
access requirements, changing the default policy can result in unexpected
org.omg.CORBA.NO_PERMISSION exceptions at runtime.