Rules with a Web Agent action either allow or deny access to the resource(s) specified by a rule when one of the HTTP actions specified in the rule occur.
When a rule that specifies Allow Access fires, if a user authenticates successfully, SiteMinder allows the user to access the specified resource. If a rule specifies Deny Access, SiteMinder denies access to the successfully authenticated user. Deny access rules may be added to policies to provide an additional layer of security by rejecting specific individuals or groups who should not have access to a resource. Allow Access is the default.
Deny access rules take precedence over allow access rules. If a deny access rule and an allow access rule fire when a user attempts to access a resource, the presence of the deny access rule overrides all allow access rules.
The Web Agent rule actions are:
Retrieves a resource for viewing via HTTP.
Supports legacy HTTP actions.
Posts information supplied by a user via HTTP.
Copyright © 2010 CA. All rights reserved. | Email CA about this topic |