My Oracle Support Banner

How to Configure WLS to Allow Requests With Invalid Basic Authentication to Access Unsecured Resources (Doc ID 1420996.1)

Last updated on MAY 08, 2024

Applies to:

Oracle WebLogic Server - Version 9.2 and later
Information in this document applies to any platform.


In WebLogic Server versions 9.2 and later, client requests that use HTTP BASIC authentication must pass WebLogic Server authentication, even if access control is not enabled on the target resource. By default, authentication is performed; therefore, if authentication fails, the request is rejected.

This document covers two different ways to allow WLS to handle requests with invalid Basic Authentication credentials to access unsecured resources.


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
 Performing the change via WLST
 Manually editing the config.xml file

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.