Agent Guide › Configure the SiteMinder Authentication Provider › Configure the Agent to Return Group Membership to WebLogic Using Responses › Example: Configure Groups as Responses for the SiteMinder Agent
Example: Configure Groups as Responses for the SiteMinder Agent
Note: The following procedures provide an overview of the steps required to create the required policy objects with appropriate parameter settings. For detailed procedural information, see the Policy Server Configuration Guide.
To configure groups as responses
- In the SiteMinder Authentication Realm, configure an OnAuthAccept rule named Group Authentication Rule with a * resource filter.
- In the policy domain for the SiteMinder Authentication Realm, create SiteMinder responses with a static HTTP header attribute for the following sample WebLogic groups:
|
Name
|
Attribute
Kind
|
Variable Name
|
Variable Value
|
|
Group
Administrators
|
Static
HTTP Header
|
_SM_WLS_GROUP
|
Administrators
|
|
Group
Deployers
|
Static
HTTP Header
|
_SM_WLS_GROUP
|
Deployers
|
|
Group
Monitors
|
Static
HTTP Header
|
_SM_WLS_GROUP
|
Monitors
|
|
Group
Operators
|
Static
HTTP Header
|
_SM_WLS_GROUP
|
Operators
|
- In the policy domain for the SiteMinder Authentication Realm:
- Configure a policy named Group Administrator Policy.
- Attach the Administrator group or users, who belong to the Administrator group, to this policy.
- Attach the Group Authentication Rule to this policy.
- Bind the Group Administrator response to this rule.
- Repeat this step and configure separate policies for the Deployers, Operators, and Monitors groups.
- Bind the Group Administrator response to this rule.
- Repeat this step and configure separate policies for the Deployers, Operators, and Monitors groups.
- Repeat this step and configure separate policies for the Deployers, Operators, and Monitors groups.
