Previous Topic: Access Control Lists

Next Topic: Manage the End-user Experience

SiteMinder Security Policies

Unlike ACLs, policies serve a dual purpose: policies provide security and manage the user experience. Policies are user-centric: policies are constructed around the user group rather than the resource.

Policies define access permissions using rules, responses, and time/location constraints. Policies are then associated with users or user groups to establish:

The following graphic provides a definition of a SiteMinder security policy.

A SiteMinder security policy

Policies provide an effective means of managing users and securing resources for the following reasons:

Because of the power and flexibility of policies, authorization models based on security policies are more efficient and effective than models based on ACLs.


Copyright © 2010 CA. All rights reserved. Email CA about this topic