Previous Topic: Include Metadata that Describes the Application

Next Topic: Establish Mappings for the Two User Directories

Application Security Policies with User Mapping and Named Expressions

In this use case, a retail clothing company wants to define a role preventing customers from making web-based credit purchases if they have exceeded their credit limit. The company policy dictates that customers have a $1,000 credit limit, while company employees may have a $2,000 credit limit.

You can create an application security policy using attribute mapping, named expressions (virtual user attributes and user classes) and roles to satisfy the company's credit policy.

Given:

Solution:

  1. Define an attribute mapping.
  2. Establish a named expression.
  3. Use the attribute mapping and expression to establish roles.
  4. Create a response to further customize the application.
  5. Create an application security policy.

More information:

Named Expressions


Copyright © 2010 CA. All rights reserved. Email CA about this topic