In this recipe, we will create a policy that will only allow access to a service if the requestor has been authenticated as the member of a particular group. Note, that all the screens say that it is a role, but actually the mapping is to a group.
Log in to Fusion Middleware Control.
In Fusion Middleware Control, expand the Farm and WebLogic Domain, and then right-click on the domain name to bring up the menu. Select Web Services | Policies:
On the Web Services Policies screen, select the policy oracle/binding_authorization_permitall_policy and click ...