Secure scheduler tasks
Scheduled tasks are protected using application isolation and administrative roles.
If a task is created using a JEE server application, only applications with the same name can access those tasks. Tasks created with a WASScheduler MBean using the AdminClient interface or scripting are not part of a J2EE application and have access to all tasks regardless of the application with which they were created. Tasks created with a WASScheduler MBean are only accessible from the WASScheduler MBean API and are not accessible from the Scheduler API.
If the Use Administration Roles attribute is enabled on a scheduler and administrative security is enabled on the Application Server, all Scheduler API methods and WASScheduler MBean API operations enforce access based on the WebSphere Administration Roles. If either of these attributes are disabled, then all API methods are fully accessible by all users.
- Enable security for all application servers.
- Manage schedulers.
Related concepts
Administrative security Scheduler task user authorization
Related tasks
Enable security Manage schedulers
Administrative roles Scheduler interface