|Home > Documentation > Configuring and administering > Administering Security > Replacing default Realm in Geronimo|
This article is about how to replace default .properties realm
geronimo-admin with SQL or LDAP realms.
By default, Geronimo is using a .properties file realm for authentication named
geronimo-admin, which is used by JMX server, Administration Console, Online-deploy and MEJB applications. However, you may not want to use it for production use. Alternatively, you can use database(SQL) or LDAP realms in a production environment. To demonstrate how to replace the default realm, we will use 2 samples as followed:
In this example, we will use an embedded Derby database as the security provider.
SecurityDatabaseusing DB manager on the administration console;
Groupsto store user credential and group information;
SecurityDatabasePoolusing Database Pools on the console;
<Geronimo_Home>/var/config/config.xmlfile to enable the SQL realm. Where
To replace the default .properties file realm using a LDAP realm, the configuration is nearly identical to the sample above. The only difference is to use
LoginModuleClass. Here is the code snippet you can use in