Security identity qualifier
The security identity qualifier is a privilege specification that
you can use to provide a logical name for the identity under which the implementation runs at run
time.
Location: A security identity qualifier is set on an implementation.
When this qualifier is used, the configured user will be used to run the component overriding the caller's identity. Otherwise, the caller's identity would be propagated. Roles are associated with the identity and the roles dictate if the implementation is authorized to invoke other components.
This setting creates a Java™ EE security role and a user RunAs role for the SCA application matching the name provided in the qualifier. To complete the configuration, you must enter a user and password for the RunAs role. You also must assign the user to the security role in the following ways:
- By using the SCA deployment descriptor. For more information, see Binding roles defined in assembly diagrams.
- During deployment. For more information, see Assigning users to roles.
- After deployment by following these steps:
- Open the application in the administrative console.
- Open the Security role to user/group mapping
Draft comment: LAURASnideroptions for the application.
Is this the actual UI text? - Select the role you want to modify and click Map Users.
- Select the user you want to set as the RunAs user and click OK.
- Click OK to complete the changes. Then save to commit the changes.
- Open the User RunAs roles options for the application.
- Select the RunAs role, enter the appropriate user name and password, and then click Apply.
- Click OK to complete the changes. Then save to commit the changes.
This topic only applies to BAW, and is located in the BAW repository. Last updated on 2025-03-13 12:15