Granting permission to the JDBC driver on the deployment manager

Use this task when using Java™ 2 security in a Network Deployment (ND) environment to grant the required permissions to the Java Database Connectivity (JDBC) driver.

Why and when to perform this task

If you are using one of the database drivers listed in the table below, you must perform this task in the following cases:

Steps for this task

  1. If you are using Java 2 security in an ND environment you have to grant the required permissions to the Java Database Connectivity (JDBC) driver. Depending on the JDBC provider, you might need to manually update the server.policy file on the deployment manager. If you are using one of the database drivers listed in the following table, make sure that the server.policy file on the deployment manager contains the template text for your JDBC driver.
    • On UNIX and Linux systems, the server.policy file is located in install_root/profiles/deployment_manager_profile/properties/.
    • On Windows systems the server.policy file is located in install_root\profiles\deployment_manager_profile\properties\.
    JDBC driver Template
    DB2® Universal JDBC Driver on Windows®, Linux®, and UNIX®
      // DB2 Universal JDBC Driver Provider (XA)
      grant codeBase "file:/${DB2UNIVERSAL_JDBC_DRIVER_PATH}/db2jcc.jar" {
        permission java.security.AllPermission;
      };
      grant codeBase "file:/${UNIVERSAL_JDBC_DRIVER_PATH}/
                              db2jcc_license_cu.jar" {
        permission java.security.AllPermission;
      };
      grant codeBase "file:/${DB2UNIVERSAL_JDBC_DRIVER_PATH}/
                              db2jcc_license_cisuz.jar" {
        permission java.security.AllPermission;
      };
    DB2 CLI provider
      // DB2 Legacy CLI-based Type 2 JDBC Driver (XA)
      grant codeBase "file:/${DB2_JDBC_DRIVER_PATH}/db2java.zip" {
        permission java.security.AllPermission;
      };
    Informix®
      // Informix JDBC Driver (XA)
      grant codeBase "file:/${INFORMIX_JDBC_DRIVER_PATH}/ifxjdbc.jar" {
        permission java.security.AllPermission;
      };
      grant codeBase "file:/${INFORMIX_JDBC_DRIVER_PATH}/ifxjdbcx.jar" {
        permission java.security.AllPermission;
      };
    Microsoft® SQL Server using the DataDirect ConnectJDBC driver
    // DataDirect ConnectJDBC type 4 driver for MS SQL Server (XA)
    grant codeBase "file:/${CONNECTJDBC_JDBC_DRIVER_PATH}/sqlserver.jar" {
    permission java.security.AllPermission;
    };
    grant codeBase "file:/${CONNECTJDBC_JDBC_DRIVER_PATH}/base.jar" {
    permission java.security.AllPermission;
    };
    grant codeBase "file:/${CONNECTJDBC_JDBC_DRIVER_PATH}/util.jar" {
    permission java.security.AllPermission;
    };
    grant codeBase "file:/${CONNECTJDBC_JDBC_DRIVER_PATH}/../spy/spy.jar" {
    permission java.security.AllPermission;
    }; 
    Oracle
      // Oracle JDBC Driver (XA)
      grant codeBase "file:/${ORACLE_JDBC_DRIVER_PATH}/ojdbc14.jar" {
        permission java.security.AllPermission;
      };
    Important: Make sure that you always use forward slashes (/), and resolve any WebSphere® variables in the template. Any syntax errors in the server.policy file can cause the deployment manager to fail to start.

    Windows systems: Even on Windows platforms, you must only use forward slashes ('/') as a separator in the path.

    For example, if DB2 is installed on a Windows system in c:\Program Files\IBM\SQLLIB, using the following template:

    // DB2 Legacy CLI-based Type 2 JDBC Driver (XA)   
    grant codeBase "file:/${DB2_JDBC_DRIVER_PATH}/db2java.zip" {   
      permission java.security.AllPermission;   
    }; 

    You must add the following code to the server.policy file:

    // DB2 Legacy CLI-based Type 2 JDBC Driver (XA)   
    grant codeBase "file:/c:/Program Files/IBM/SQLLIB/java/db2java.zip" {   
      permission java.security.AllPermission;   
    };
  2. Restart the deployment manager.

Result

The JDBC driver works in an ND environment that has Java 2 security enabled.

What to do next

Continue configuring in the parent topic at step 5.

Terms of use |

Last updated: Tue Feb 21 17:47:13 2006

(c) Copyright IBM Corporation 2005.
This information center is powered by Eclipse technology (http://www.eclipse.org)