The SiteMinder JACC Provider is a JAAS module that implements the Java Authorization Contract for Containers (JSR-115) specification, enabling the SiteMinder Agent for IBM WebSphere to handle authorization decisions for WebSphere Web and EJB resources.
The SiteMinder JACC Provider determines whether an authenticated user is allowed to access a protected WebSphere resource, based on associated SiteMinder policies configured using the Administrative UI.
The SiteMinder JACC Provider only accepts Subjects populated with a SiteMinder Principal containing SiteMinder session data (required to prove that SiteMinder authentication has occurred).
The SiteMinder JACC Provider implements the interfaces defined in the JSR-115 specification and fulfills the following contracts (with certain limitations):
The SiteMinder JACC Provider does not fully comply with the JSR-115 Policy Configuration Subcontract; it does not create policies for applications. SiteMinder administrators must therefore create security policies for applications using the Administrative UI. However, because the SiteMinder JACC Provider does support the CONFIDENTIAL transport-guarantee, it tracks any WebUserDataPermission notifications that inform the Policy Configuration interface of resources that are constrained with that transport requirement.
Copyright © 2010 CA. All rights reserved. | Email CA Technologies about this topic |