OTN Home > Oracle WebLogic Server 14.1.1.0.0 Documentation > Administration Console Online Help > Configure authorization providers

Administration Console Online Help

Previous Next Open TOC in new window
Content starts here

Configure authorization providers

Before you begin

If automatic realm restart is enabled, you do not need to restart WebLogic Server for non-dynamic changes made to the security providers to go into effect. See Enable automatic realm restart and Using Automatic Realm Restart.


WebLogic Server offers the following types of authorization providers:

Note: The WebLogic Authorization provider is deprecated in WebLogic Server 14.1.1.0.0 and will be removed in a future release. Instead, the XACML Authorization provider is the default provider.

Each security realm must have one at least one authorization provider configured.

To configure an authorization provider:

  1. If you have not already done so, in the Change Center of the Administration Console, click Lock & Edit (see Use the Change Center).
  2. In the left pane, select Security Realms, then click the name of the realm you are configuring (for example, myrealm).
  3. Expand Providers > Authorization and click New.

    The Create a New Authorization Provider page appears.
  4. In the Name field of Create a New Authorization Provider, enter a name for the authorization provider.
  5. From the Type drop-down list, select the type of the authorization provider and click OK.
  6. Expand Providers > Authorization and click the name of the new authorization provider to complete its configuration.
  7. Optionally, on the Configuration:Provider Specific page for the authorization provider, check Policy Deployment Enabled. Do this if you want to store security policies that are created when you deploy a Web application or an Enterprise JavaBean (EJB).
  8. In the Change Center, click Activate Changes.

Back to Top