Every EAServer contains an Admin package and an Admin role. You must be a member of the Admin role to run EAServer Manager.
Initially, only jagadmin is a member of this role. The jagadmin user can set up additional members.
Even though other users can belong to the Admin role and run EAServer Manager, only the jagadmin user can:
Set the following options from EAServer Manager | Servers folder | server_name | Properties | Security tab:
The jagadmin password
Enable OS Authentication
Enable User & Groups Validation
Modify users, groups, or digital IDs belonging to the EAServer Manager | Roles | Admin role.
Granting permissions to EAServer roles
Beginning with EAServer 5.0, members of the Admin role can use EAServer Manager or jagtool to grant permissions to other EAServer roles; for example, permission to start or shut down a server.
Although users with the Admin role can grant permission to other roles to perform certain tasks, these tasks must be performed using jagtool because only members of the Admin role can access EAServer Manager.
In EAServer Manager, expand the Roles folder, highlight the role to which you want to grant permissions, right-click, and select Properties.
In the Role Properties dialog box, select any of the tabs described below.
Application Authorities To grant users with the current role permission to create, modify, or delete an application, select Add Application, and enter the application name.
To remove an application from the list of those that users with this role have permission to access, highlight the application name, and select Delete Application.
Package Authorities To grant users with the current role permission to create, modify, or delete a package, select Add Package, and enter the package name.
To remove a package from the list of those that users with this role have permission to access, highlight the package name, and select Delete Package.
Server Authorities To authorize users with the current role permission to perform an action on the server, select the action:
Restart Server
Refresh Server
Shut down Server
To revoke permission to perform an action, unselect the action.
Servlet Authorities To grant users with the current role permission to create, modify, or delete a servlet, select Add Servlet, and enter the servlet name.
To remove a servlet from the list of those that users with this role have permission to access, highlight the servlet name, and select Delete Servlet.
Web Application Authorities To grant users with the current role permission to create, modify, or delete a Web application, select Add Web Application, and enter the Web application name.
To remove a Web application from the list of those that users with this role have permission to access, highlight the Web application name, and select Delete Web Application.
For information about using jagtool to grant and revoke permissions, see the reference pages for the commands grantroleauth or removeroleauth in Chapter 12, “Using jagtool and jagant,” in the EAServer System Administration Guide.
