Setting Up A Protected Resource - Novell ACCESS MANAGER 3.1 SP1 - GATEWAY GUIDE Manual

Access gateway guide

Hide thumbs Also See for ACCESS MANAGER 3.1 SP1 - GATEWAY GUIDE:

Manual (162 pages)

Installation manual (42 pages)

Quick start manual (24 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

Table of Contents

Authorization Policy: Specifies the conditions a user must meet to be allowed access to a protected

resource. You define the conditions, and the Access Gateway enforces the Authorization policies.

For example, you can assign roles to your users, and use these roles to grant and deny access to

resources.

Identity Injection Policy: Specifies the information that must be injected into the HTTP header. If

the Web application has been configured to look for certain fields in the header and the information

cannot be found, the Web application determines whether the user is denied access or redirected.

The Web application defines the requirements for Identity Injection. The Identity Injection policies

allow you to inject the required information into the header.

Form Fill Policy: Allows you to manage forms that Web servers return in response to client

requests. Form fill allows you to prepopulate fields in a form on first login and then securely save

the information in the completed form to a secret store for subsequent logins. The user is prompted

to reenter the information only when something changes, such as a password.

These policies allow you to design a custom access policy for each protected resource:

Resources that share the same protection requirements can be configured as a group. You set up

the policies, and then add the URLs of each resource that requires these policies.

A resource that has specialized protection requirements can be set up as a single protected

resource. For example, a page that uses Form Fill is usually set up as a single protected

resource.

This section describes the following tasks:

Section 1.4.1, "Setting Up a Protected Resource," on page 20

Section 1.4.2, "Understanding URL Path Matching," on page 23

Section 1.4.3, "Using a Query String in the URL Path," on page 23

Section 1.4.4, "Modifying Authentication Procedures," on page 24

Section 1.4.5, "Assigning an Authorization Policy to a Protected Resource," on page 25

Section 1.4.6, "Assigning an Identity Injection Policy to a Protected Resource," on page 26

Section 1.4.7, "Assigning a Form Fill Policy to a Protected Resource," on page 27

Section 1.4.8, "Assigning a Policy to Multiple Protected Resources," on page 29

1.4.1 Setting Up a Protected Resource

To configure a protected resource:

1 Click Access Gateways > Edit > [Name of Reverse Proxy] > [Name of Proxy Service] >

Protected Resources.

2 Either click the name of an existing resource or click New, then specify a display name for the

resource.

Novell Access Manager 3.1 SP1 Access Gateway Guide

Table of Contents

Chapters

Table of Contents

Troubleshooting

Need help?

Do you have a question about the ACCESS MANAGER 3.1 SP1 - GATEWAY GUIDE and is the answer not in the manual?

Setting Up A Protected Resource - Novell ACCESS MANAGER 3.1 SP1 - GATEWAY GUIDE Manual

1.4.1 Setting Up a Protected Resource

Chapters

Troubleshooting

Need help?

Related Manuals for Novell ACCESS MANAGER 3.1 SP1 - GATEWAY GUIDE

Table of Contents