Condition Extension; Data Extension - Novell ACCESS MANAGER 3.1 SP2 - POLICY GUIDE 2010 Manual

Hide thumbs Also See for ACCESS MANAGER 3.1 SP2 - POLICY GUIDE 2010:

Manual (374 pages)

User manual (58 pages)

Manual (264 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

Table of Contents

Unix Lines

For regular expression syntax information, see the Javadoc for java.util.regex.Pattern.

Value: Specify the value type and value for the comparison. Select one of the following:

Data Entry Field: To specify a static value, select Data Entry Field and provide a value

appropriate for your comparison type. For example:

Comparison Type

Equals

In Range

In Subnet

If you selected IP for the comparison type, you can add multiple values:

Use the Edit button to access a text box where you can enter multiple values, each on a

separate line.

Use the Add button to add values one at a time.

All listed values are compared to the IP address in the header until a match is found or the list is

exhausted.

Client IP: If you want the first IP address in the X-Forwarded-For header compared to the IP

address of the client making the request, select this option.

LDAP Attribute: If you have defined an LDAP attribute for an IP address, you can select this

option, then select your attribute.

Liberty User Profile: If you have defined a Liberty User Profile attribute for an IP address,

you can select this option, then select your attribute.

Result on Condition Error: Specify what the condition returns when the comparison of the two

values returns an error rather than the results of the comparison. Select either False or True. If you

do not want the action applied when an error occurs, select False. If you want the action applied

when an error occurs, select True.

3.6.20 Condition Extension

If you have loaded and configured an authorization condition extension, this option specifies a

condition that is evaluated by an outside source. This outside source returns either true or false. See

the documentation that came with the extension for information about what is evaluated.

3.6.21 Data Extension

If you have loaded and configured an authorization data extension, this option specifies the value

that the extension retrieves. You can then select to compare this value with an LDAP attribute, a

Liberty User Profile attribute, a Data Entry Field, or another Data Extension. For more information,

see the documentation that came with the extension.

112 Novell Access Manager 3.1 SP2 Policy Guide

Value

10.10.10.10

10.10.10.11

10.10.10.10 - 10.10.10.100

10.10.20.10 - 10.10.20.100

10.10.10.12 / 22

10.10.20.30 / 22

Table of Contents

Chapters

Table of Contents

Condition Extension; Data Extension - Novell ACCESS MANAGER 3.1 SP2 - POLICY GUIDE 2010 Manual

3.6.20 Condition Extension

3.6.21 Data Extension

Chapters

Troubleshooting

Related Manuals for Novell ACCESS MANAGER 3.1 SP2 - POLICY GUIDE 2010

Related Content for Novell ACCESS MANAGER 3.1 SP2 - POLICY GUIDE 2010

Table of Contents