Mapping user groups to the Monitor role

When you create user groups, you might have to map them to the Monitor role to give them access to the model MBeans.

Before you begin

To map groups to roles, you work in the WebSphere Integrated Solutions Console. Log in to the console as explained in Before you start: Opening the administration console.

About this task

To access the MBeans of the Rule Execution Server model, an application must have sufficient security credentials, restricted to the Monitor role in the WebSphere Application Server authentication system. You can give Rule Execution Server users access to the model MBeans by configuring a mapping between the resAdministrators group or the resDeployers group and the Monitor role. These groups are declared in the custom registry.

Procedure

  1. In the WebSphere Integrated Solutions Console, open Users and Groups  > Administrative group roles.
  2. Click Add.
  3. From the Role(s) list, select Monitor.
  4. In the Search string field, type resAdministrators and click Search.

    An entry that begins with resAdministrators is displayed in the Available column.

  5. Click the arrow to move the entry from the Available column to the Mapped to role column, and then click OK.
  6. Optional: Do the same for resDeployers, then click OK.
  7. In the next panel, click Save to save directly to the master configuration.
  8. Restart your application server or your deployment manager.
Parent topic: Step 5: Activating security on WebSphere Application Server