Warning! Audit Deprecated
Information
Security roles should be used to limit user access based on certain conditions.
A security role is an identity granted to users or groups based on specific conditions. Security roles are used by policies to determine who can access a WebLogic resource.
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
Firstly create a specific role if it has not been created onto the system.
To add the user to the role follow the steps specified below:
1. On Security Realms page, select the name of the realm that contains the role definition
2. On the Settings page, select the Roles and Policies tab. Then select the Roles subtab.
3. Access the role's Edit and Role page to check the role that best suits the user.
4. On the role's Edit Role page, create a role condition that adds a user to the role.
5. On the role's Edit Role page, click Save.