Multiple choice technology platforms and products

Which of the following is NOT true about the security implementation in the WebLogic Server?

  1. Servlets, JSPs, EJBs, RMI objects, and Java applications use the Java Authentication and Authorization Service to authenticate WebLogic Server.

  2. The default security realm in WebLogic Server is the File realm.

  3. The default authentication scheme for WebLogic Server is two-way authentication

  4. An Administration Server may contain configuration information for one WebLogic Server or a cluster of WebLogic servers

Reveal answer Fill a bubble to check yourself
C Correct answer
Explanation

WebLogic Server uses one-way authentication as the default, not two-way. Two-way (mutual) authentication requires explicit SSL configuration where both client and server verify each other's identities. The other statements are true: JAAS is used for authentication, the default realm is File-based (in older versions), and Administration Server configures individual servers or clusters.