Attributes identify information that the producer passes to the consumer.
You can specify the following types of attributes as an addition to an assertion:
Returns data that remains constant.
Use a static attribute to return a string as part of a SiteMinder response. This type of response can be used to provide information to a web application. For example, if a group of users has customized content on a website, the static response attribute, show_button = yes, can be passed to the application.
Returns profile information from an entry in a user directory.
This type of response attribute returns information associated with a user in a directory. A user attribute can be retrieved from an LDAP, WinNT, or ODBC user directory.
Note: For the producer to return response attributes with values from user directory attributes, the user directories must be configured in the Administrative UI.
Returns profile information from a directory object in an LDAP or ODBC user directory.
This type of attribute is used to return information associated with directory objects to which the user is related. Groups to which a user belongs, and Organizational Units (OUs) that are part of a user DN, are examples of DN attributes.
For example, you can use a DN attribute to return a company division for a user, based on the user membership in a division.
Note: For the Policy Server to return response attributes using values from DN attributes, the user directories must be configured in the SiteMinder User Directory dialog.
|
Copyright © 2012 CA.
All rights reserved.
|
|