Modify This Secure Mode
/management/weblogic/{version}/edit/securityConfiguration/secureMode
Modify this secure mode.
Request
- application/json
-
version(required): string
The version of the WebLogic REST interface.
-
X-Requested-By(required): string
The 'X-Requested-By' header is used to protect against Cross-Site Request Forgery (CSRF) attacks. The value is an arbitrary name such as 'MyClient'.
Must contain the modified secure mode model.
object-
dynamicallyCreated:
boolean
Read Only:
trueDefault Value:falseReturn whether the MBean was created dynamically or is persisted to config.xml
-
id:
integer(int64)
Read Only:
trueReturn the unique id of this MBean instance
-
name:
string
Read Only:
trueThe user-specified name of this MBean instance.
This name is included as one of the key properties in the MBean's
javax.management.ObjectNameName=user-specified-nameConstraints
- legal null
-
notes:
string
Optional information that you can include to describe this configuration.
WebLogic Server saves this note in the domain's configuration file (
config.xml) as XML PCDATA. All left angle brackets (<) are converted to the xml entity<. Carriage returns/line feeds are preserved.Note: If you create or edit a note from the Administration Console, the Administration Console does not preserve carriage returns/line feeds.
-
restrictiveJMXPolicies:
boolean
Default Value:
trueReturns whether restrictive policies will be used for JMX authorization.
If secure mode is enabled and restrictive policies are enabled, then the default policies for JMX only allow MBean access to the standard WLS roles (Admin, Deployer, Operator, or Monitor). If changed as part of a non-dynamic activation, then the ServerSecurityRuntimeMBean.resetDefaultPolicies method should also be invoked.
-
secureModeEnabled:
boolean
Returns whether the domain will run in secure mode.
In secure mode, the configuration defaults are those recommended for securing a domain. The authorization policies for JNDI and MBean access are more restrictive in secure mode. In addition, WLS will validate the domain configuration and log warnings and errors for any insecure settings.
Secure mode requires the domain to be in production mode.
-
tags:
array Items
Title:
ItemsReturn all tags on this Configuration MBean
-
type:
string
Read Only:
trueReturns the type of the MBean.
Constraints
- unharvestable
-
warnOnAnonymousRequests:
boolean
Default Value:
trueReturns whether a warning should be logged if anonymous RMI requests are enabled.
If the warning is enabled, then a message will be logged if anonymous RMI requests are enabled.
-
warnOnAuditing:
boolean
Default Value:
trueReturns whether warnings should be logged if auditing not enabled.
If secure mode is enabled and warnings are enabled, then messages will be logged if auditing is not enabled.
-
warnOnInsecureApplications:
boolean
Default Value:
trueReturns whether warnings should be logged if applications are not secure.
If secure mode is enabled and warnings are enabled, then messages will be logged for insecure application elements.
-
warnOnInsecureDataSources:
boolean
Default Value:
trueReturns whether warnings should be logged if data sources are not secure.
If production mode is enabled and warnings are enabled, then messages will be logged for insecure data sources.
-
warnOnInsecureFileSystem:
boolean
Default Value:
trueReturns whether warnings should be logged if the File System is not secure.
If secure mode is enabled and warnings are enabled, then messages will be logged for insecure file system setting.
-
warnOnInsecureSSL:
boolean
Default Value:
trueReturns whether warnings should be logged if the SSL configuration is not secure.
If secure mode is enabled and warnings are enabled, then messages will be logged for insecure SSL configuration settings.
-
warnOnJavaSecurityManager:
boolean
Default Value:
falseReturns whether warnings should be logged if the Java Security Manager is not enabled.
If secure mode is enabled and warning is enabled, then a messages will be logged if the Java Security Manager is not enabled.
-
warnOnPatches:
boolean
Default Value:
trueReturns whether a warning should be logged if required WebLogic Server or Coherence CPU patches are not applied.
If the warning is enabled, then a message will be logged if required CPU patches are not applied.
-
warnOnPorts:
boolean
Default Value:
trueReturns whether a warning should be logged if ports configuration is insecure.
If the warning is enabled, then a message will be logged if the network port configuration is insecure.
-
warnOnSamples:
boolean
Default Value:
trueReturns whether a warning should be logged if samples are installed.
If the warning is enabled, then a message will be logged if samples are installed.
-
warnOnUserLockout:
boolean
Default Value:
trueReturns whether a warning should be logged if the user lockout configuration is not secure.
If the warning is enabled, then a message will be logged if the user lockout settings are not secure.
-
warnOnUsernamePasswords:
boolean
Default Value:
trueReturns whether a warning should be logged if usernames or password configuration is insecure.
If the warning is enabled and the domain is in secured production mode, then a message will be logged if well known administrator usernames are present or password validation configuration is insecure.
-
Admin: basic
Type:
basicDescription:A user in the Admin security role.