The ejb-jar.xml visual editor lets you edit the general for an EJB module. You open the editor by expanding the project's Configuration Files node in the Projects window and double-clicking ejb-jar.xml. You edit the security roles in the Security Roles section of the General tab of the visual editor.
A security role is an abstract logical grouping of users that is defined by the application assembler. When an application is deployed, the roles are mapped to security identities, such as principals or groups, in the operational environment. In the J2EE server authentication service, a role is an abstract name for permission to access a particular set of resources. A role can be compared to a key that can open a lock. Many people might have a copy of the key; the lock does not care who you are, only that you have the right key.
To add a role:
To edit a role:
To remove a role: