Assigning A Policy To Multiple Protected Resources - Novell ACCESS MANAGER 3.1 SP2 - ACCESS GATEWAY GUIDE 2010 Manual

Access gateway guide

Hide thumbs Also See for ACCESS MANAGER 3.1 SP2 - ACCESS GATEWAY GUIDE 2010:

Manual (374 pages)

User manual (58 pages)

Manual (30 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

Table of Contents

The user first logs in to PR2 and is active for 10 minutes. The shared1 time line gets updated with

this activity. When the user requests access to PR1, the user is granted access without being

prompted for credentials. The user is then active on PR1 for over 20 minutes. When the user

requests access to PR2, even though the user has been inactive on this resource for over 20 minutes,

the user is granted access because the time line shows activity within the last five minutes.

With this configuration, PR2 does not time out as long as the user remains active on PR1. However,

when the user goes inactive on both PR2 and PR1 for over 15 minutes and the user requests access

to PR1, the time line shows no activity within the time limit specified for PR2 and the user is

prompted to log in.

Scenario 4: Novell does not recommend that you set different authentication timeouts on contracts

and then use the Any contract option for protected resources. If you want to use the Any contract,

then you should set the authentication timeout to the same value on all contracts. If the timeouts are

not the same, you cannot consistently predict what timeouts are being applied to the various

protected resources. For example, the user requests access to a resource that is protected with a

contract with a short timeout. The user logs in, then accesses resources that use the Any contract

option. All of these resources are assigned a short timeout.The user then goes inactive and the

session times out. The user then requests access to a resource with a contract with a long timeout.

The user logs in, and after a few minutes, accesses same resources protected with the Any contract

option. These resources are now assigned the long timeout value.

1.3.7 Assigning a Policy to Multiple Protected Resources

If you have created multiple protected resources that need to be protected by the same policy or

policies, you can use the policy view to assign a policy to multiple protected resources. However,

the protected resources must belong to the same proxy service.

1 In the Administration Console, click Devices > Access Gateways > Edit > [Reverse Proxy

Name] > [Name of Proxy Service] > Protected Resources.

2 Select the Policy View.

Configuring the Access Gateway to Protect Web Resources

Table of Contents

Chapters

Table of Contents

Assigning A Policy To Multiple Protected Resources - Novell ACCESS MANAGER 3.1 SP2 - ACCESS GATEWAY GUIDE 2010 Manual

1.3.7 Assigning a Policy to Multiple Protected Resources

Chapters

Troubleshooting

Related Manuals for Novell ACCESS MANAGER 3.1 SP2 - ACCESS GATEWAY GUIDE 2010

Related Content for Novell ACCESS MANAGER 3.1 SP2 - ACCESS GATEWAY GUIDE 2010

Table of Contents