Use the Security Center to modify global and default security settings for all applications:
The default settings are used as a template or starting point for configuring individual applications. The administrator should still explicitly configure security settings for each application.
The following are security settings that are specified during application assembly.
If a security role is manually added to the EAR file, it can be automatically removed when the file is saved, if an embedded module does not reference the role or the role is in conflict with an existing role. In this case, the manually added role should be removed, but then all roles with the same name are removed.
The role is automatically added again when the file is saved if it is still being referenced in an embedded module file. If a duplicate role is added in an embedded module file, all roles with the same name should be deleted by the user and the correct role manually read again.