Warning! Audit Deprecated
Information
Security Interoperability Mode specifies the mode of the communication channel used for XA calls between servers that participate in a global transaction. All server instances in a domain must have the same security mode setting. The default option is the most secure, since it uses the kernel identity over an admin channel if it is enabled and 'anonymous' otherwise.
Selecting either 'performance' or 'compatibility' as the Security Interoperability Mode is a security risk since a malicious user could implement a man-in-the-middle attack by affecting the outcome of transactions. The 'compatibility' setting also runs the risk of a malicious user gaining administrative control.
Solution
1. Login to the Administration Console.
2. In the Change Center, click Lock & Edit.
3. In the left pane, select the Domain name.
4. Select Security > Advanced.
5. Set 'Security Interoperability Mode' to [default].
6. If necessary, select save. To activate these changes, in the Change Center of the Administration Console, click Activate Changes.