Previous Topic: Designate the Application Resources

Next Topic: Use a Response to Supply Data to the Application

Create Employee and Manager Roles

After defining the specific components of an application that require protection, you can specify the roles that users may be assigned. Roles are the set of users who have access to a particular resource. These sets of users are defined by an expression.

Note: The following procedure assumes you are creating a new object. You can also copy the properties of an existing object to create an object. More information exists in Duplicate Policy Server Objects.

To create a role

  1. Click the Roles tab.
  2. Click Create.

    The Create Role pane appears.

  3. Verify that the Create radio button is selected, and click OK.
  4. Enter values for the fields in the General group box. For this use case, enter the following:
  5. Enter an expression in the Membership group box. For this use case, enter the following:

    To form an expression, you can use the Expression Editor. To access the editor, click Edit.

  6. Click Submit.
  7. Repeat steps 2–4 to create a second role called Managers, as follows:

Note: Click Help for descriptions of settings and controls, including their respective requirements and limits.

More information:

Create an Attribute Mapping for Group Membership


Copyright © 2010 CA. All rights reserved. Email CA about this topic