Use the Administrative User Roles page to give users specific authority to administer application servers through tools such as the administrative console or wsadmin scripting. The authority requirements are only effective when global security is enabled. Use the Common Object Request Broker Architecture (CORBA) naming service users settings page to manage CORBA naming service users settings.
To view the CORBA naming service groups administrative console page, click Environment > Naming > CORBA Naming Service Groups.
Click Refresh All to automatically update the node agent and all of the nodes when a new user is created with the Administrator or Admin Security Manager role. When you click Refresh All, you do not need to manually restart the node agent under an existing Administrator before the new user is recognized with one of these roles. This button automatically invokes the AuthorizationManager refreshAll MBean method. To invoke this method manually, read about Fine-grained administrative security in heterogeneous and single-server environments.
Specifies users.
The users that are entered must exist in the configured active user registry.
Information | Value |
---|---|
Data type: | String |
Specifies CORBA naming service users.
The users that are entered must exist in the configured active user registry.
Information | Value |
---|---|
Data type: | String |
Specifies user roles.
Information | Value |
---|---|
Data type: | String |
Range: | Administrator, Operator, Configurator, Deployer, Monitor, and iscadmins |
Specifies naming service user roles.
A number of naming roles are defined to provide degrees of authority that are needed to perform certain application server naming service functions. The authorization policy is only enforced when global security is enabled. The following roles are valid: CosNamingRead, CosNamingWrite, CosNamingCreate, and CosNamingDelete.
Information | Value |
---|---|
Data type: | String |
Range: | CosNamingRead, CosNamingWrite, CosNamingCreate and CosNamingDelete |
Specifies whether the user is active or inactive.