Configuring Policy

A policy defines rules that specify who is authorized to access an organization's resources, including applications and services. Policies control this access by defining who can do what to which resource, and when and how it can be done. In OpenSSO Enterprise resources are defined and policies are created at the realm (or sub realm) level. The Policy Service enables the top-level administrator or policy administrator to create, delete, modify and view policies for a specific resource within the realm. For more information on configuring policies, see Chapter 4, Managing Policies.