NonStop Servlets for JavaServer Pages (5.0) System Administrator's Guide
Configuring NSJSP
NonStop Servlets for JavaServer Pages (NSJSP) System Administrator’s Guide—525644-002
3-25
Troubleshooting the Security Manager
By default, the NSJSP container is run without a security manager. You can optionally
set the following option if you choose not to use the security manager:
-Dnsjsp.security.manager=none
Troubleshooting the Security Manager
You can turn on Java Security Manager debug logging by including
-Djava.security.debug=all in the servlet.config file before starting NSJSP.
The debug output is sent the log file
iTPWS_INSTALL_DIR/logs/servlet_error.log or
iTPWS_INSTALL_DIR/logs/servlet.log if you are using the single log file option.
Example 3-16. Starting NSJSP With a Security Manager
#
# NSJSP Java2 System policy file and Java2 VM option.
#
# Note: the "double" equalto signs "==" is not a typo!! This informs
the JVM
# to use this file exclusively and that all others are to be ignored.
#
set env(JVM_POLICY_FILE) $env(NSJSP_HOME)/conf/iTP_catalina.policy
set NSJSP_SECMGR_POLICY -Djava.security.policy==$env(JVM_POLICY_FILE)
...
set NSJSP_SECMGR -Djava.security.manager
...
#
# This is the actual Arglist used to startup the NSJSP Container.
#
Arglist -Xbootclasspath/a:$env(JAVA_HOME)/lib/tools.jar -Xnoclassgc \
-Xmx64m -Xss128k -Dbrowserdebug=false \
-Djdbc.drivers=com.tandem.sqlmp.SQLMPDriver \
$NSJSP_SECMGR $NSJSP_SECMGR_POLICY $NSJSP_JAAS_CONFIG \
-DEnableJMXProxyServlet=false \
-Djava.endorsed.dirs=$env(NSJSP_ENDORSED_DIRS) \
-Dcatalina.home=$env(NSJSP_HOME) \
-Djava.io.tmpdir=$env(NSJSP_HOME)/temp \
com.tandem.servlet.NSJSPBootstrap -config
$nsjsp_config_file start