When SiteMinder authenticates a user, it establishes a user context. Subsequently, access control policy decisions are based on the user context matching one of the criteria shown in below.
User Namespace |
Description |
---|---|
User |
The user's name must match the user name specified in the policy. |
User Group |
The user must be a member of the user group specified in the policy. |
User Attribute |
The search expression specifying conditions related to user attributes must be true. |
SQL query |
The SQL query specifying conditions related to the user must be true. |
Generally, you would bind users or user attributes to policies on the Policy Users/Groups pane by selecting an entry from the list of available directory entries. However, individual users may not be visible in the list of available directory entries (depending on the setup of Query Enumerate in the SQL query scheme for the user directory).
Copyright © 2010 CA. All rights reserved. | Email CA about this topic |