Application Security 2.0
This feature enables support for securing the server runtime environment and applications; it includes a basic user registry. This feature supersedes appSecurity-1.0 and does not include servlet-3.0 or support for the LDAP user registry. To secure web applications, add the servlet-3.0 feature. To secure EJB applications, add the ejbLite-3.1 feature. To use LDAP, add the ldapRegistry-3.0 feature. When you add the appSecurity-2.0 feature to your server, you need to configure a user registry, such as the basic user registry or the LDAP user registry.
Command Line Install
To install the feature from the command line, type:
bin/installUtility install appSecurity-2.0
If you are installing into 18.104.22.168 or earlier and the feature supports that version, use the featureManager command, for example:
bin/featureManager install appSecurity-2.0 --when-file-exists=ignore
To use the feature at runtime add the following to your server.xml file