Technical data

Configuring and Managing WebLogic Server 8-1
CHAPTER
8 Protecting System
Administration
Operations
To leverage individual skills, many Web development teams divide system
administration responsibilities into distinct roles. Each project might give only one or
two team members permission to deploy components, but allow all team members to
view the WebLogic Server configuration. A WebLogic Server supports this role-based
development by providing four global roles that determine access privileges for system
administration operations: Admin, Deployer, Operator, and Monitor.
All WebLogic Server system administration operations are implemented via a set of
MBeans. An MBean is a type of Java object that is specified in the Java Management
Extensions (JMX). When a user tries to invoke operations on these
system-administration MBeans, the WebLogic Server determines whether the user
belongs to a role that is permitted to carry out the operation. For more information on
MBeans that configure WebLogic Servers, refer to “System Administration
Infrastructure” on page 1-5.
This topic contains the following sections:
! Operations Available to Each Role
! Protected User Interfaces
! Permissions for Starting and Shutting Down a WebLogic Server
Note: These role-based permissions replace access control lists (ACLs) for securing
WebLogic Server MBeans, which were used before Release 7.0.