2 To create an Authorization policy for the employees, click New, specify a name for the policy,
select J2EE Agent: Web Authorization as the type, then click OK.
3 For the first rule, click New, set up a condition that permits access if the user has been assigned
the Employee role, then click OK. Your rule should look similar to the following:
4 To create the second rule in the policy, click New.
5 To create a generic deny rule, assign a deny action, then click OK. Your rule should look
similar to the following:
When you create a policy with one or more permit rules and you end it with a deny rule with a
priority of 10, the logic of the policy is clear. Users who match a permit rule are allowed access;
everyone else is denied access.
6 To save your employee policy, click OK > Apply Changes.
Deploying the Sample Payroll Application 103