This figure illustrates the security mapping between the EJB Deployment Descriptor and the OC4J-Specific Deployment Descriptor.

On the left, there is a box labeled "EJB Deployment Descriptor" containing the following sample code:

...
   <security-role>
      <role-name>POMGR</role-name>
   </security-role>
   <method-permission>
      <role-name>POMGR</role-name>
      <method>. . .</method>
   </method-permission>
...
</assembly-descriptor>

On the right, there is a box labeled "OC4J-Specific Deployment Descriptor" containing the following sample code:

<assembly-descriptor>
   <security-role-mapping name="POMGR">
      <group name="managers">
   </security-role-mapping>
</assembly-descriptor>

There is an arrow from the first <role-name>POMGR</role-name> line in the EJB Deployment Descriptor to the <security-role-mapping name="POMGR"> line in the OC4J-Specific Deployment Descriptor.