Previous Topic: Access Control and ManagementNext Topic: Web Services Methods by Category

Managing Web ServicesExternal SpecificationsAccess Control and ManagementDefine an Access Policy

Define an Access Policy

To create any SOAP web services access policy, an administrator defines an access policy.

To define the access policy

  1. Click the Administration tab.
  2. In the tree on the left, click SOAP Web Services Policy, Policies.

    The SOAP Web Services Access Policy List page appears.

  3. Click Create New.

    The Create New SOAP Web Services Access Policy dialog appears.

  4. Enter the information for the new access policy:

    Note: The default value of -1 in any operation counter indicates that no restrictions apply to the corresponding operation. A value of 0 (zero) indicates that the corresponding operation is not allowed.

    Symbol

    (Required) Identifies a symbolic name of the access policy.

    Code

    (Required) Indicates the unique text that identifies this access policy.

    Status

    (Required) Identifies the status of an access policy. An inactive policy is not used.

    Proxy Contact

    Identifies the contact to use for all web services operations and CA SDM security.

    Default

    Identifies the default policy. Set this policy as the default policy. Only one active default policy is allowed to exist. Creating a default policy automatically sets the current default policy to a nondefault status.

    Has Key

    (Read-Only) indicates whether a public key has been associated with this policy. This field is updated when a public key is associated with a policy through the pdm_pki utility.

    Allow Impersonate

    Identifies the allow impersonate permission. When you set this field, the policyholder can invoke the impersonate() web services method and create a web services session in the name of the user to be impersonated. Additional access authentication is not performed when creating the session. However, only when the access_level of the new access type for the user is less than or equal to the grant_level of the proxy access type for the user can this method be successfully called.

    Description

    Indicates the detailed description of this access policy.

    Ticket Creation

    Indicates the number of ticket (call request, change order, and issue) insertion operations allowed per hour.

    Object Creation

    Indicates the number of CA SDM object (other than ticket object) insertion operations allowed per hour.

    Object Updates

    Indicates the number of CA SDM object update operations allowed per hour.

    Attachments

    Indicates the number of attachment-related operations allowed per hour.

    Data Queries

    Indicates the number of data query operations allowed per hour.

    Knowledge

    Indicates the number of knowledge-related operations allowed per hour.

  5. Click Save.

    The SOAP web services policy is defined.