Security is one of the important aspects of any Java EE server. Geronimo has a rich set of features that meet the security requirements for Java EE 5 compliance. In this chapter, we look at various aspects of security, namely, securing the server environment, various components on the server, such as the embedded database and so on, and securing the applications deployed on the server. You will learn about:
The security standards implemented by Geronimo
Configuring the administrator access to the Geronimo server
Securing the embedded Derby database
Cryptographic security features provided by Geronimo
JAAS login modules implemented by Geronimo
Creating security realms
Creating credential stores
Configuring web, EJB, and EAR application security
Configuring Single sign-on (SSO)