Novell ACCESS MANAGER 3.1 SP2 - POLICY GUIDE 2010 Manual page 86

Hide thumbs Also See for ACCESS MANAGER 3.1 SP2 - POLICY GUIDE 2010:

Manual (374 pages)

User manual (58 pages)

Manual (110 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

Table of Contents

To create an EJB Authorization policy:

1 In the Administration Console, click Policies > Policies > New.

2 Specify a name for the policy, select J2EE Agent: EJB Authorization as the type, then click OK.

3 Fill in the following fields:

Description: (Optional) Specify a description for the rule.

Priority: Specify the order in which a rule is applied in the policy, when the policy has

multiple rules. The highest priority is 1 and the lowest priority is 10. If two rules have the same

priority, a Deny rule is applied before a Permit rule.

4 In the Condition Group 1 section, click New, then select one of the following:

Credential Profile: Allows you to control access based on the credentials the user

specified during authentication. For configuration information, see

"Credential Profile Condition," on page

Current Date: Allows you to control access based on the date of the request. For more

information, see

Day of Week: Allows you to control access based on the day the request is made. For

configuration information, see

Current Day of Month: Allows you to control access based on the month the request is

made. For configuration information, see

Condition," on page

Current Time of Day: Allows you to control access based on the time the request was

made. For configuration information, see

on page

LDAP Attribute: Allows you to control access based on the value of an LDAP attribute.

For configuration information, see

page

Liberty User Profile: Allows you to control access based on the value of a Liberty

attribute. For configuration information, see

Condition," on page

Roles: Allows you to control access based on the roles a user has been assigned. For

configuration information, see

5 To add multiple conditions to the same rule, either add a condition to the same condition group

or create a new condition group. For information on how conditions and condition groups

interact with each other, see

6 In the Actions section, select either Permit or Deny.

7 To save the rule, click OK, then click Apply Changes.

8 Assign the policy to an EJB resource. See

Policy to a

Novell Access Manager 3.1 SP2 Policy Guide

Section 3.6.4, "Current Date Condition," on page

95.

96.

99.

101.

Section 3.1.4, "Using Multiple Conditions," on page

Resource" in the

Novell Access Manager 3.1 SP2 J2EE Agent

91.

Section 3.6.5, "Day of Week Condition," on page

Section 3.6.6, "Current Day of Month

Section 3.6.7, "Current Time of Day Condition,"

Section 3.6.9, "LDAP Attribute Condition," on

Section 3.6.11, "Liberty User Profile

Section 3.6.12, "Roles Condition," on page

"Assigning an Enterprise JavaBeans Authorization

Section 3.6.3,

93.

94.

102.

67.

Guide.

Table of Contents

Chapters

Table of Contents

Novell ACCESS MANAGER 3.1 SP2 - POLICY GUIDE 2010 Manual page 86

Chapters

Troubleshooting

Related Products for Novell ACCESS MANAGER 3.1 SP2 - POLICY GUIDE 2010

Novell ACCESS MANAGER 3.1 SP2 - POLICY GUIDE 2010 Manual page 86

Chapters

Troubleshooting

Related Manuals for Novell ACCESS MANAGER 3.1 SP2 - POLICY GUIDE 2010

Related Products for Novell ACCESS MANAGER 3.1 SP2 - POLICY GUIDE 2010

Table of Contents