Show TOC Anfang des Inhaltsbereichs

Vorgehensweisen Managing Resources  Dokument im Navigationsbaum lokalisieren

Use

The resource management of AS Java enables you to manage user rights over specific security sensitive parts of the server – that is the resources of the server. In order to allow or restrict user access to these parts, you must perform this management. For example, when an .EAR file is deployed on the server (that is, a new application is deployed), it is displayed as a new component in the Visual Administrator tool with all its resources and specific parts this application contains.

Procedure

...

...

       1.      Choose the Security Provider service Runtime Policy Configurations Resources tab.

       2.      Choose the Switch to edit mode button from the upper left-hand part of the screen.

If You Want To

Then

View the resources information

·        You can view all the actions available for the resource in the Actions menu. This displays all the available actions for the resource.

·        All the granted users to the selected resource are displayed in the Granted list.

·        All the users that have no rights over the resource (that is those that are not granted) are displayed in the Denied list of user.

Diese Grafik wird im zugehörigen Text erklärt

When a role is granted to a resource in the root node, it is displayed in green in the Granted or Denied list. The colors help you to browse through the security permissions. The roles marked in black mean that the selected security role can access the selected pair of instances and actions for the resource. The green marked roles mean that the selected security role can use some instances and actions for the resource and also enables it to access the selected pair of instances and actions for the resource. If this role is denied access to the instance-action that it has been given access to, it will also lose access to the inherited instance-action. If a green security role is removed, it will access roles that have no access to the instance-action pair. If it is allowed again it will be black this time. Black means that even if access to the instance-action is denied, the role will still have access to the current instance-action.

Grant to a security role rights over a resource

...

       1.      From the left-hand side list of resources choose the resource you want to grant a role rights to use.

       2.      From the list of instances, select the instance over which the security role rights are to be granted.

       3.      From the right-hand side list choose the role for which you want to grant permissions.

       4.      If you want to specify a particular action for which you want to grant the role access, select this action from Actions.

       5.      Choose <<.

Deny a security role rights over a resource

...

       1.      From the left-hand side list of resources select the resource over which you want to deny role rights.

       2.      From the list of instances, select the instance over which the security role rights are to be denied.

       3.      From the list on the right-hand side, select the role you want to deny.

       4.      If you want to specify a particular action you want to prevent the role from accessing, select this action from Actions.

       5.      Choose >>.

Diese Grafik wird im zugehörigen Text erklärt

You can remove a security role from both lists using Clear button.

 

For more information about the security roles, see Security Roles Management.

 

 

Ende des Inhaltsbereichs