SiteMinder Administrators are assigned rights to one or more security categories that define their administrative authority in the Administrative UI, such as managing authentication schemes.
In previous r12.x releases, you could limit the scope of rights to manage domains or applications to specific domains and applications. Otherwise, an administrator had access to every policy store object related to their other assigned security categories.
This release introduces Workspace objects which allow you to define a subset of policy store objects in any of the following categories:
You assign a workspace to one or more Administrators to filter the objects that are available to them, further scoping their administrative authority. An administrator whose administrative authority is restricted by an assigned workspace is therefore known as a scoped administrator.
Note: Scoped Application Admin and Domain Admin security category rights grants defined in earlier releases are honored in this release and shown for existing administrators. New scoped grants are not possible. Existing scoped grants can be deleted but not modified.
|
Copyright © 2012 CA Technologies.
All rights reserved.
|
|