Security Credentials for accessing CICS® can come from three different places.
Managed enterprise applications can be deployed with "container" or "application" as a security choice. If "container" is specified, the JEE application server will provide the credentials by means of a user interface. If "application" is specified, security is determined from the deployment properties and can be overridden by the ConnectionSpec.