Configuring Arbortext Publishing Engine > Configuring Arbortext Editor to Use Arbortext PE server > Arbortext Publishing Engine Security Framework > Configuring Users and Roles > Configuring Users and Roles in Apache Tomcat
  
Configuring Users and Roles in Apache Tomcat
You must configure Apache Tomcat with the user IDs and roles that Arbortext Publishing Engine will be checking for. Configure roles and users in the file conf\tomcat-users.xml, found in the top-level Tomcat installation directory. Apache Tomcat is installed with a tomcat-users.xml that contains only comments. No roles or users are defined by default.
Follow is an example of roles and users as they could be defined in tomcat-users.xml:
<tomcat-users>
<role rolename="pe-admin"/>
<role rolename="pe-user"/>
<user username="ptc" password="ptcpassword" roles="pe-admin"/>
<user username="user" password="userpassword" roles="pe-user"/>
</tomcat-users>
* 
Do not use the configuration as shown here in your production system. Unauthorized people trying to access your Arbortext PE server may try these published values.
You must also ensure that Tomcat is configured in line with current security best practices.
This defines two roles and two user IDs, each of which is a member of one role. Configuring with this example can be useful for testing. If you use a web browser to access the Arbortext Publishing Engine Index Page and are asked for authentication, authenticate as user "ptc" and you should be allowed access. Authenticate instead as "user" and access should be disallowed.
* 
Defining users and roles in tomcat-users.xml is supported by Apache Tomcat as installed. However, defining a site's users and roles in this manner may not be the best solution for many environments. For example, you may wish to have your users IDs and passwords be defined by your existing Tomcat-based corporation security infrastructure. Refer to the documentation supporting your existing system for information on its integration with other systems.