Manualshelf

Technical data

ManualsBrandsBEA ManualsComputer equipmentWebLogic Server 7
271272273274275276277278279280
14 Managing Security
14-42 Administration Guide
For more information about Users and the access control model in WebLogic Server,
see Introduction to WebLogic Security and Security Fundamentals.
Defining Groups
Note: This section describes how to add Groups to the File realm. If you are using an
alternate security realm, you need to use the management tools provided in
that realm to define a Group.
User and group names must be unique. You can use multibyte characters and
all special characters except a comma (
,) in user and group names.
A Group represents a set of Users who usually have something in common, such as
working in the same department in a company. Groups are a means of managing a
number of Users in an efficient manner. When a Group is granted a permission in an
ACL, all members of the Group effectively receive that permission. BEA recommends
assigning permissions to Groups rather than to individual Users.
By default, WebLogic Server has the following Groups:
n All Users defined in the security realm are automatically members of the
everyone Group.
n All Users defined in the security realm except the guest user are automatically
members of the
users Group.
n The system User is a member of the Administrators Group. This Group
should be given the permissions appropriate for a user responsible for starting
and stopping servers and maintaining a running WebLogic Server deployment.
Access to this group should be limited.
You can register a Group with the WebLogic Server security realm by performing the
following steps:
1. Go to the Security
Groups node in the left pane of the Administration Console.
2. Click the Create a New Group link.
The Group Configuration window appears.