Domain-->Compatibility Security-->General

Tasks     Related Topics     Attributes

 

Overview

Use this page to configure an Auditing provider for the CompatibilityRealm and to disable the guest user for a WebLogic domain. This page applies to WebLogic Server deployments using Compatibility Security.

The Auditing provider installed from this page must be an implementation of the weblogic.security.audit interface. This interface is deprecated in this release of WebLogic Server.

The guest user is automatically provided in Compatibility security. When authorization is not required, WebLogic Server assigns the guest identity to an client, thus giving the client access to any resources that are available to the guest user. A client can log in as the guest user by entering guest as the username and password when prompted by a Web browser or in a Java client. By default, the guest account is disabled. For a more secure deployment, BEA recommends running WebLogic Server with the guest account disabled.

 

Tasks

Setting Up Compatibility Security: Main Steps

Disabling the Guest User

Installing an Audit Provider

 

Related Topics

Introduction to WebLogic Security

Managing WebLogic Security

Securing WebLogic Resources

Programmimg WebLogic Security

Developing Security Providers for WebLogic Server

Securing a Production Environment

The Security topics in the WebLogic Server 8.1 Upgrade Guide

Security FAQ

The Security page in the WebLogic Server documentation

 

Attributes

Attribute Label

Description

Value Constraints

Audit Provider Class MBean: weblogic.management.
configuration.
SecurityMBeanAttribute: AuditProviderClassName 		Configurable: yesReadable: yesWritable: yes
Guest Disabled Specifies whether or not guest logins can be used to access WebLogic Server resources.MBean: weblogic.management.
configuration.
SecurityMBeanAttribute: GuestDisabled 		Default: trueReadable: yesWritable: yes


Skip navigation bar  Back to Top Previous Next