|
|
|
An active policy is used for dynamic authorization based on external business logic. An active policy is included in the authorization decision by having the Policy Server invoke a function in a customer-supplied shared library. This shared library must conform to the interface specified by the Authorization API (available separately with the Software Development Kit; if installed, see the Developer’s Guide for C for more information).
The process for configuring active policies for global policies is identical to the process for configuring active policies for domain-specific policies.
Note: When you create or modify a Policy Server object in the Policy Server User Interface, use ASCII characters. Object creation or modification with non-ASCII characters is not supported.
To configure an Active Policy
You can include a path in the Library Name, however, it is not required. If you do not specify a path, the Policy Server uses the default path for your system to search for the shared library at run-time. You should not include a file extension for the shared library.
For example, if you are using a Windows NT platform and your shared library is called lib.dll, and is located in the \SiteMinder\bin\ directory which is added to your system path when you install the Policy Server, you simply need to enter lib in the Library Name field.
As you enter information in the fields, the system displays the generated string in the Generated Script field.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |