+

Search Tips   |   Advanced Search

 

Assigning users to naming roles

 

Use this task to assign users to naming roles by using the administrative console.

 

Overview

The following steps are needed to assign users to naming roles. In the console, click Environment > Naming, and click CORBA Naming Service Users or CORBA Naming Service Groups.

 

Procedure

  1. Click Add on the CORBA Naming Service Users or the CORBA Naming Service Groups panel.

  2. To add a new naming service user, enter a user identity in the User field, highlight one or more naming roles, and click OK. If no validation errors occur, the specified user is displayed with the assigned security role.

  3. To add a new naming service group, either select Specify group and enter a group name or select Select from special subject and then select EVERYONE. Click OK. If no validation errors occur, the specified group or special subject is displayed with the assigned security role.

  4. To remove a user or group assignment, go to the CORBA Naming Service Users or CORBA Naming Service Groups panel. Select the check box next to the user or group to remove and click Remove.

  5. To manage the set of users or groups to display, expand the Filter folder on the right panel, and modify the filter text box. For example, setting the filter to user* displays only users with the user prefix.

  6. After modifications are complete, click Save to save the mappings. Restart the server for the changes to take effect.

 

Example

The default naming security policy is to grant all users read access to the CosNaming space and to grant any valid user the privilege to modify the contents of the CosNaming space. You can perform the previously mentioned steps to restrict user access to the CosNaming space. However, use caution when changing the naming security policy. Unless a Java 2 Platform, Enterprise Edition (J2EE) application has clearly specified its naming space access requirements, changing the default policy can result in unexpected org.omg.CORBA.NO_PERMISSION exceptions at runtime.

 

Related concepts


Administrative roles and naming service authorization
Role-based authorization
Access control exception

 

Related tasks


Assigning users and groups to roles
Assigning users to RunAs roles
Authorizing access to administrative roles

 

Related Reference


Administrative group roles and CORBA naming service groups