Agent Guide › Configure Policies › Configure Rules for SiteMinder Authorization Provider

Configure Rules for SiteMinder Authorization Provider

A rule identifies specific resources within a realm and whether to allow or deny access to those resources. Rules are the parts of policies that determine precisely which resources are protected, and which types of actions cause the rule to fire. A rule is required to allow resource request to be passed to protected WebLogic resources.

You configure rules for the SiteMinder Authorization Provider in the same manner as you would SiteMinder rules, defining one or more rules that identify:

• A specific resource to protect (Using SiteMinder resource mapping for WebLogic resources to map a WebLogic resource to a SiteMinder representation.)
• The Web Agent action that causes the rule to fire (Any appropriate action, such as Post for URL resources; the Get action for all other resource types).
• Whether to allow or deny access to the specified resource when the rule is fired

For example, a rule can specify that all EJB resources in a realm are protected for Get Agent actions. When a client attempts to access these resources, the rule fires and the policy containing the rule determines whether the consumer application can access the protected EJB application.

Note: For more information about creating rules, see the SiteMinder Policy Server Configuration Guide.