This section contains the following topics:
The first steps in defining policies are to (1) create an organization under which the application to be secured will be defined and (2) define identities (users and groups) to represent application users. Once users and groups are created, they be granted access to application resources.
This section walks you through the steps of creating the organization and identities needed to represent employees of Parker Hospital who use the Admissions System’s patient roster. These are described in Table 3-1.
Tip: | When you expand RootOrg, you will see two out-of-box entities: the EntitlementUI application and a child organization named DefaultOrg. The EntitlementUI application represents the Entitlements Administration Application itself and the DefaultOrg organization contains a number of out-of-box resources and any resources created in previous versions of this product. For further information about these objects, see Entitlements Administration Application help system. |
ParkerHospital
in the Name field and click OK.Note that spaces are not allowed in organization names.
As shown in Figure 3-1, the ParkerHospital organization will appear in the navigation tree under RootOrg.
Parker_Identities
and click OK.As shown in Figure 3-3, the identity directory will appear in the Identities Directory list and the Type column will indicate it is a direct child of the ParkerHospital organization.
As shown in Figure 3-4, the Groups tab lists the allusers group, which is an automatically provided group that contains all users in the Parker_Identities directory.
Doctors
in the Group Name field and click OK. After both groups are created, they will appear in groups list as shown in Figure 3-5.
John Kildaire
in the User Name field and complete the two password fields using any string of at least six characters and click OK.Note: | The password value is unimportant; it will not be used in these tutorials. |
John Kildaire will appear in the Users list as shown in Figure 3-6.
After creating the organization and identities, save your changes as follows:
Note: | The Yes, save changes and distribute option is used when you have made changes to policy definitions. Selecting it will save your changes and also distribute the policies to the SSM that is securing the application. |
This tutorial showed how to create the following objects: