The crossDomainSessionSecurity parameter is available in web.xml file in OEBPS_HOME\webapps\deploy\sbm\WEB-INF folder.
Note: The above folder is for users using embedded JBoss application server.
The default value of this parameter is set to false. This parameter needs to be set to true to enable web security (besides other web security flags) in Business Process Server. If this flag is set to true, then pages with controls and DB adaplets cannot be accessed from outside Business Process Portal.
