Novell ACCESS MANAGER 3.1 SP2 - POLICY GUIDE 2010 Manual page 56

6 In the Actions section, click Activate Role.
7 In the Activate Role box, type
The name you specify in the box is the role you want assigned to the users who match the
condition.
Your rule should look similar to the following:
8 Click OK twice, then click Apply Changes.
9 To enable the role so that it can be used in Authorization and Identity Injection policies, click
Identity Servers > Edit > Roles.
10 Select the check box next to the name of the role, then click Enable.
11 Click OK.
12 Update the Identity Server.
You can now use this role when creating Authorization and Identity Injection policies, which control
access to protected Web resources. For more information, see the following:
Chapter 3, "Creating Authorization Policies," on page 65
Chapter 4, "Creating Identity Injection Policies," on page 115
Creating a Role by Using the Location of the User Objects
If you have created your users in specific containers in your LDAP tree, you can use these container
objects to assign users to roles. For example, suppose your LDAP tree looks similar to the following
tree.
56 Novell Access Manager 3.1 SP2 Policy Guide
, then click OK.
UserClass