|
|
|
System objects can be used throughout a SiteMinder deployment. They include connections to existing user directories, administrators, Agents, authentication schemes, registration schemes, and password policies.
The following tables lists all of the system objects.
|
Object |
Description |
|---|---|
|
Agents |
An Agent is installed on Web servers, application servers, or other network entities to secure access to resources. Once an Agent is installed on a server, a SiteMinder object must be configured for the Agent in the Policy Server User Interface. |
|
Agent Groups |
An Agent group is a Policy Server object that points to a group of Agents. The Agents in the group can be installed on different servers, but all of the Agents protect the same resources. Typically Agent groups are configured in SiteMinder for groups of servers that distribute the workload for access to a popular set of resources. |
|
Agent Configuration Objects |
An Agent Configuration Object holds configuration parameters for one or more Web Agents. |
|
Host Configuration Objects |
A Host Configuration Object holds configuration parameters for the Trusted host. |
|
User |
A user directory in SiteMinder is an object that contains details for connecting to an existing user directory that resides outside of SiteMinder. This allows an administrator to configure a simple connection to an existing user directory, instead of replicating user information within SiteMinder. |
|
Policy Domains |
A policy domain is a logical grouping of one or more user directories, administrators, and realms. This Policy Server object is the basis for entitlement data. By creating policy domains, an administrator creates a container for entitlements that surround a particular groups of resources (realm), as well as the users who may access the resources, and the administrator who sets up entitlements. |
|
Affiliate Domains |
An affiliate domain is a logical grouping of SAML affiliates associated with one or more user directories and administrators. For more information, see the Federation Security Services Guide. This system object is only available if the SiteMinder Option Pack v6.0 SP 3/4 for the Policy Server is installed on the Policy Server. |
|
Administrators |
An administrator is an object that contains profile information for a SiteMinder administrator account. Everyone who logs into SiteMinder is considered an administrator. The privileges and activities of an administrator account vary by administrative role. |
|
Authentication Schemes |
An authentication scheme is a Policy Server object that determines the credentials a user will need to access a protected resource. Authentication schemes are assigned to realms. When a user tries to access a resource in a realm, the authentication scheme of the realm determines the credentials that a user must supply in order to access the resource. |
|
Registration Schemes |
A registration scheme is a Policy Server object that allows users to register themselves for access to a group of resources on a network and administrators to manage registered users. Registration schemes simplify the task of managing a large user database. |
|
Agent Types |
An Agent Type is a Policy Server object that defines the actions and response attributes supported by a type of Agent, such as Web, Affiliate, RADIUS, or custom. |
|
SQL Query Schemes |
A SQL Query Scheme is an object that stores SiteMinder SQL queries. These queries are used to retrieve information, such as a list of user groups, from relational databases (for example, Oracle) used as SiteMinder user directories. |
|
Password |
Password policies are Policy Server objects that contain rules for passwords, including expiration dates, constraints, and composition requirements. |
|
SAML Affiliations |
A SAML affiliation is a group of SAML 2.0 entities that share a name identifier for a single principal. For more information, see the Federation Security Services Guide. Note: This system object is only available if the SiteMinder Option Pack v6.0 SP 3/4 for the Policy Server is installed on the Policy Server. |
|
Trusted Hosts |
A Trusted Host object represents the client component that connects to the Policy Server. |
|
IdentityMinder Environment |
An IdentityMinder Environment is a Policy Server object produced by IdentityMinder that must be associated with a directory and a policy domain. For more information, see CA Identity Manager Operations Guide. Note: This system object is only available if the IdentityMinder Extensions for Policy Server are installed. |
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |