Assigning A Form Fill Policy To A Protected Resource - Novell ACCESS MANAGER 3.1 SP2 - ACCESS GATEWAY GUIDE 2010 Manual

IMPORTANT: If you enable an Identity Injection policy for a protected resource that has been
assigned to use a contract that does not prompt the user for a password and the Identity Injection
policy injects the user's password, single sign-on cannot be enabled because the password is not
available. However, you can create a contract that retrieves the user's password when the user is not
prompted for a password when authenticating. See
Access Manager 3.1 SP2 Identity Server

1.3.5 Assigning a Form Fill Policy to a Protected Resource

Some client requests cause the Web server to return a form. Sometimes this form contains a request
to log in. If you create a Form Fill policy, you can have the Access Gateway fill in the form. When a
user first logs in, the Access Gateway prepopulates some fields and prompts the users for the others.
The Access Gateway securely saves the information, so that on subsequent logins, the Access
Gateway can fill in the form. The user is only prompted to fill in the form when something changes,
such as a password expiring.
Form Fill uses two components: the HTML form and the Form Fill policy. The HTML form is
created with HTML tags and consists of form elements such as fields, menus, check boxes, and
buttons. The Form Fill policy is created by specifying the following:
Which information is entered automatically and not displayed to the user.
Which information is displayed so that the user, at least the first time, can enter the information.
What is done with the information (for example, whether it is saved so that the user doesn't
need to enter it when accessing the form again).
You must create the policy before you can assign it to a resource (see
in the Novell Access Manager 3.1 SP2 Policy
resource:
1 In the Administration Console, click Devices > Access Gateways > Edit > [Reverse Proxy
Name] > [Name of Proxy Service] > Protected Resources > [Name of Protected Resource].
2 Examine the entries in the URL Path List.
Ideally, the URL to which you are assigning a Form Fill policy should be a single HTML page
or a few HTML pages. If possible, it should not be a URL that ends in a wildcard (for example,
an asterisk) and therefore matches many pages.
IMPORTANT: When the URL ends in a wildcard, the Access Gateway must search each page
that matches the URL and check to see if it contains the form. This adds extra processing
overhead for all the pages that match the URL, but do not contain the form. For more
information on the performance problems this can cause, see
in the Novell Access Manager 3.1 SP2 Policy
3 (Conditional) If the URL is not specific, click the name of the path and modify it.
"Configuring Password
Guide.
Guide). To assign a Form Fill policy to a protected
"Creating a Form Matching
Guide.
Configuring the Access Gateway to Protect Web Resources
Retrieval" in the Novell
"Creating Form Fill Policies"
Rule"
33