Policy Server Guides › Policy Design Guide › Rules › Advanced Rule Options › Configure an Active Rule

Configure an Active Rule

An Active Rule is used for dynamic authorization based on external business logic. The Policy Server invokes a function in a customer-supplied shared library. This shared library must conform to the interface specified by the Authorization API (available separately with the Software Development Kit; if installed, see the Developer’s Guide for C for more information).

Note: When you create or modify a Policy Server object in the Policy Server User Interface, use ASCII characters. Object creation or modification with non-ASCII characters is not supported.

To configure an Active Rule

1. In the Advanced group box of the SiteMinder Rule dialog, click the Active Rule tab.

   The Active Rule tab moves to the front.

2. In the Active Rule tab, click Set.

   The SiteMinder Active Rule Editor dialog opens.

3. In the Variable Name field, enter the variable name to be generated.
4. In the Library Name field, enter the name of the shared library that supports the Active Rule.

   You can include a path in the Library Name, however, it is not required. If you do not specify a path, the Policy Server uses the default path for your system to search for the shared library at run-time.

   You should not include a file extension for the shared library. For example, if you are using a Windows platform and your shared library is called lib.dll, and is located in the \SiteMinder\bin\ directory, you simply need to enter lib in the Library Name field.

5. In the Function Name field, enter the name of the actual function in the shared library that implements the Active Rule.
6. In the Parameter(s) field, enter the (optional) list of parameters to be passed to the function in the shared library.

   As you enter information in the fields, the system displays the generated string in the Generated Script field.

7. Click OK to save the Active Rule and return to the SiteMinder Rule dialog.