Example: J2EE security permissions

You must grant J2EE security permissions to application scoped code for JMX and WebSphere Application Server administrative privileges in order to allow the code to call WebSphere Application Server administrative and JMX methods.

• To invoke JMX class and interface methods, at least one of the following permissions are required:

  permission com.tivoli.jmx.MBeanServerPermission "MBeanServer.*"
  permission com.tivoli.jmx.MBeanServerPermission "MBeanServerFactory.*"
  where the individual target names are:
  MBeanServer.addNotificationListener 
  MBeanServer.createMBean 
  MBeanServer.deserialize 
  MBeanServer.getAttribute 
  MBeanServer.getDefaultDomain 
  MBeanServer.getMBeanCount 
  MBeanServer.getMBeanInfo 
  MBeanServer.getObjectInstance 
  MBeanServer.instantiate 
  MBeanServer.invoke 
  MBeanServer.isRegistered 
  MBeanServer.queryMBeans 
  MBeanServer.queryNames 
  MBeanServer.registerMBean 
  MBeanServer.removeNotificationListener 
  MBeanServer.setAttribute 
  MBeanServer.unregisterMBean 
  MBeanServerFactory.createMBeanServer 
  MBeanServerFactory.newMBeanServer 
  MBeanServerFactory.findMBeanServer 
  MBeanServerFactory.releaseMBeanServer 
  

• For WebSphere Application Server administrative APIs, the permissions are the following:

  permission com.ibm.websphere.management.AdminPermission "getAdminService" 
  permission com.ibm.websphere.management.AdminPermission "getMBeanFactory"