There are three places where configuration is required:
Additions to the Roles policy.
Creating an Identity Injection policy for protected WebSphere Portal Server application
resources.
Assigning the Identity Injection policy to the WebSphere Portal Server application resources.
"Configuring the Roles Policy" on page 81
"Configuring the Identity Injection Policy for WebSphere Portal Server Application
Resources" on page 82
Configuring the Roles Policy
Because WebSphere Portal Server requires multiple roles, a separate Roles policy named
WPS_roles can be created.This policy needs to be assigned to the IDP clusters. Add the following
information to the WPS_roles policy.
Preparing the Applications and the J2EE Servers
81