© 2010 Oracle Corporation – Proprietary and Confidential
Infrastructure Security Best Practices Oracle Management Service
Follow best practices for securing Oracle Weblogic Server (Securing the Production Environment for Oracle Weblogic Server)
Protect WebLogic Server Home directory especially domain directory which contains configuration files, security files, log files and other Java EE resources for the Weblogic domain.
Grant only one OS user who runs Weblogic Server the access privilege to the directory
Create no fewer than two user accounts with system administrator privileges
To ensure one user maintains account access in case another user becomes locked out by a dictionary/brute force attack