By default, Data Collector configuration enables Java™ 2 security on the application server, and
sets a permissive policy. This policy ensures that the Data Collector
can run properly, and provides no other security protection. If you
need a more restrictive policy, perform the following procedure to
ensure that the policy becomes active and the Data Collector can still
work properly.
The Data Collector sets the Java security
policy file location for all monitored application server instances
(
java.security.policy system property) to
DC_home/itcamdc/etc/datacollector.policy.
You must edit this file in the following way:
- Remove all existing content.
- Copy the sample security policy for the Data Collector from the
file DC_home/itcamdc/etc/datacollector.security.policy.
- If ITCAM for Transactions is installed on the server, add a grant
statement for the ITCAM for Transactions code base to the security
policy file. Follow the model for the grant statements provided in
the sample datacollector.security.policy file, but use the ITCAM for
Transactions installation root directory in the codeBase statement.
- Add your required security policy settings.
Save the file, and create a backup copy.
Attention: Each time you configure or reconfigure the
Data Collector for an application server instance, the file DC_home/itcamdc/etc/datacollector.policy might
be overwritten. To ensure that your security policy remains active,
restore this file from the backup copy after configuring or reconfiguring
the Data Collector for any application server instance.