|
|
|
When SiteMinder authenticates a user, it establishes a user context. Subsequently, access control policy decisions are based on the user context matching one of the criteria shown in below.
|
User Namespace |
Description |
|---|---|
|
User |
The user’s name must match the user name specified in the policy. |
|
User Group |
The user must be a member of the user group specified in the policy. |
|
User Attribute |
The search expression specifying conditions related to user attributes must be true. |
|
SQL query |
The SQL query specifying conditions related to the user must be true. |
Generally, you bind users or user attributes to policies via the Policy Users/Groups dialog in the Policy Server User Interface by selecting an entry from the list of available directory entries. However, individual users may not be visible in the list of available directory entries (depending on the setup of Query Enumerate in the SQL query scheme for the user directory).
Note: When you create or modify a Policy Server object in the Policy Server User Interface, use ASCII characters. Object creation or modification with non-ASCII characters is not supported.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |