54 lines
2.3 KiB
HTML
54 lines
2.3 KiB
HTML
|
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
|
||
|
<html>
|
||
|
<head>
|
||
|
<META http-equiv="Content-Type" content="text/html; charset=utf-8">
|
||
|
<LINK rel="stylesheet" type="text/css" href="../../../rzahg/ic.css">
|
||
|
|
||
|
<title>Configure the server.policy file</title>
|
||
|
</head>
|
||
|
|
||
|
<BODY>
|
||
|
<!-- Java sync-link -->
|
||
|
<SCRIPT LANGUAGE="Javascript" SRC="../../../rzahg/synch.js" TYPE="text/javascript"></SCRIPT>
|
||
|
|
||
|
<h5><a name="seccj2se"></a>Configure the server.policy file</h5>
|
||
|
|
||
|
<p>The server.policy file is a default policy file for the server. If the default permissions for the server are adequate, no action is required. If a specific change is required to some of the server programs on a node, update the server.policy file. If you want to add permissions to an application, use the app.policy and was.policy files.</p>
|
||
|
|
||
|
<p>If some server programs on a node require permissions that are not defined as defaults in the java.policy file and the server.policy file, use the policy tool to update the server.policy file. To decide whether to add a permission, see <a href="secj2ace.htm">AccessControlException</a>.</p>
|
||
|
|
||
|
<p>The server.policy file is located in the /QIBM/UserData/WebASE51/ASE/<em>instanceName</em>/properties directory where <em>instanceName</em> is the name of your instance. It contains these default permissions:</p>
|
||
|
|
||
|
<pre> grant codeBase "file:${was.install.root}/java/extlib/-" {
|
||
|
permission java.security.AllPermission;
|
||
|
};
|
||
|
|
||
|
grant codeBase "file:${was.install.root}/java/tools/ibmtools.jar" {
|
||
|
permission java.security.AllPermission;
|
||
|
};
|
||
|
|
||
|
grant codeBase "file:/QIBM/ProdData/Java400/jdk14/lib/tools.jar" {
|
||
|
permission java.security.AllPermission;
|
||
|
};
|
||
|
|
||
|
grant codeBase "file:${was.install.root}/lib/-" {
|
||
|
permission java.security.AllPermission;
|
||
|
};
|
||
|
|
||
|
grant codeBase "file:${was.install.root}/classes/-" {
|
||
|
permission java.security.AllPermission;
|
||
|
};
|
||
|
|
||
|
grant codeBase "file:${was.install.root}/deploytool/-" {
|
||
|
permission java.security.AllPermission;
|
||
|
};</pre>
|
||
|
|
||
|
|
||
|
<p>Use the policy tool to modify the server.policy file. For more information, see <a href="seccupol.htm">Create and edit policy files with the policy tool</a>.</p>
|
||
|
|
||
|
<p>After you have updated the server.policy file, restart all of the Java processes for the updated server.policy file to take effect.</p>
|
||
|
|
||
|
</body>
|
||
|
</html>
|
||
|
|