Assigning An Enterprise Javabeans Authorization Policy To A Resource - Novell ACCESS MANAGER 3.1 SP1 - AGENT GUIDE Manual

6.3.2 Assigning an Enterprise JavaBeans Authorization Policy
to a Resource
The following instructions assume that you have already created your Authorization policy for the
Web resource. For general information about Authorization policies, see
Policies" in the
about creating an EJB Authorization policy, see
Policies for J2EE
1 In the Administration Console, click Devices > J2EE Agents > Edit > Manage authorization
policies > [Name of EJB Module] > [Name of EJB] > Authorization Policy.
2 To enable a policy, select a policy in the list, then click Enable.
If no policies appear in the list, you haven't created any. Click Manage Policies. For
configuration information, see see
J2EE
WARNING: EJBs that are configured to run as a role can only use limited conditions in an
EJB Authorization policy. The Current Roles of User and the time conditions can be used in the
policy, but the conditions requiring user information cannot be used. This is because the RunAs
role subjects do not contain the Liberty profile, LDAP attribute, or LDAP credential
information that these conditions require. When unsupported conditions are defined in a policy
and that policy is assigned to a RunAs role EJB, the user is denied access to the EJB resource.
3 Click Configuration Panel > OK
4 On the Configuration page, click OK, then click Update > OK.
84 Novell Access Manager 3.1 SP1 Agent Guide
Novell Access Manager 3.1 SP1 Policy Management Guide
Agents" in the Novell Access Manager 3.1 SP1 Policy Management Guide
Agents" in the Novell Access Manager 3.1 SP1 Policy Management Guide
"Creating Enterprise JavaBean Authorization
"Creating Enterprise JavaBean Authorization Policies for
"Creating Authorization
and for information