An EJB module consists of one or more beans. You can use development tools such as Rational Application Developer to develop an EJB module. You can also enforce security at the EJB method level.
You can assign a set of EJB methods to a set of one or more roles. When an EJB method is secured by associating a set of roles, grant at least one role in that set so that you can access that method. To exclude a set of EJB
methods from access mark the set excluded . You can give everyone access to a set of enterprise beans methods by clearing those methods.
You can run enterprise beans as a different identity, using the runAs identity, before invoking other enterprise beans.
Related concepts
Authorization technology
Related tasks
Securing enterprise bean applications