Limiting Metaspace Access

Typically, you do not need to edit a security token file. The one case where you might want to edit a security token file is when a security domain is associated with more than one metaspace, but you want to make sure that a security token file can only be used to connect to a specific metaspace.

When a security domain is associated with more than one metaspace, the Metaspace Access List for the security domain contains multiple metaspace_access entries in the security policy file. When you generate a security token file from the security policy file, multiple metaspaces are listed in the security token file. To restrict the metaspaces that can be connected to using this security token file, remove the metaspace_access entries for connections that should not be allowed.

See Metaspace Access List for more information about the format of the Metaspace Access List in security policy files.

Copyright © Cloud Software Group, Inc. All rights reserved.