Enabling Java 2 security

WebSphere Commerce supports Java 2 security. It is disabled by default, but enabled automatically when you enable WebSphere global security. You can, however, choose to disable Java 2 security when you enable WebSphere global security and generally configure Java 2 security and WebSphere global security independently of one another.

Provides a policy-based, fine-grain access control mechanism that increases overall system integrity by checking for permissions before allowing access to certain protected system resources. Java 2 security guards access to system resources such as file I/O, sockets, and properties.

  • WebSphere Commerce supports Java 2 security. It is disabled by default, but enabled automatically when you enable WebSphere global security. You can, however, choose to disable Java 2 security when you enable WebSphere global security and generally configure Java 2 security and WebSphere global security independently of one another.

Procedure

  1. Start the WebSphere Application Server administration server.
  2. Open the WebSphere Integrated Solutions Console.
  3. In the WebSphere Application Server Administration Console, expand Security and click Global Security.
  4. On the Global security page that is displayed, select the Enforce Java 2 security option.
  5. Click OK or Apply and then Save.
  6. When prompted, click Save again to apply the changes to the master configuration.
  7. Restart the WebSphere Application Server administration server for the changes to take effect.
    This will enforce the default Java 2 security policies that you can customize as needed.

    For more information, see Java 2 security and Protecting system resources and APIs (Java 2 security).