|Home > Documentation > Configuring and administering > Administering Security > Replacing default Realm in Geronimo|
This article is about how to replace default .properties realm geronimo-admin with SQL or LDAP realms.
By default, Geronimo is using a .properties file realm for authentication named geronimo-admin, which is used by JMX server, Administration Console, Online-deploy and MEJB applications. However, you may not want to use it for production use. Alternatively, you can use database(SQL) or LDAP realms in a production environment. To demonstrate how to replace the default realm, we will use 2 samples as followed:
In this example, we will use an embedded Derby database as the security provider.
To replace the default .properties file realm using a LDAP realm, the configuration is nearly identical to the sample above. The only difference is to use org.apache.geronimo.security.realm.providers.LDAPLogoinModule as LoginModuleClass. Here is the code snippet you can use in config.xml: