Disabling the Application Server's security manager may improve performance for some types of applications. The Java authorization and authentication features will still work even if the security manager has been disabled. You may disable the security manager in a development environment, but you should not disable it in a production environment.
Select the Application Server node.
Click the JVM Setting tab, then the JVM Options tab.
Remove the -Djava.security.policy option by selecting the checkbox next to the option.
Click Delete.
Click Save.
Restart the server.