Scheduled tasks are protected using application isolation and administrative roles. This topic describes how to secure scheduler tasks.
If a task is created using a Java Platform, Enterprise Edition (Java EE) server application, only applications with the same name can access those tasks. Tasks created with a WASScheduler MBean using the AdminClient interface or scripting are not part of a J2EE application and have access to all tasks regardless of the application with which they were created. Tasks created with a WASScheduler MBean are only accessible from the WASScheduler MBean API and are not accessible from the Scheduler API.
If the Use Administration Roles attribute is enabled on a scheduler and administrative security is enabled on the Application Server, all Scheduler API methods and WASScheduler MBean API operations enforce access based on the WebSphere® Administration Roles. If either of these attributes are disabled, then all API methods are fully accessible by all users.
In this information ...Related concepts
| IBM Redbooks, demos, education, and more(Index) |