Sun Java System Access Manager Policy Agent 2.2 User's Guide

Preface

The Sun JavaTM System Policy Agent software consists of J2EE (Java 2 Platform Enterprise Edition) agents and web agents. This Access Manager Policy Agent 2.2 User's Guide provides an overview of how Sun Java System Policy Agent 2.2 works, detailing features and processes of Policy Agent that are the same for all J2EE and web agents. The J2EE and web agents have many similarities, but the two types of agents also have some differences. This book covers the similarities in detail while summarizing the differences. This book is designed to help you identify topics relevant to your enterprise needs so that you can explore those topics more fully in other Access Manager and Policy Agent documentation.

Within the Policy Agent documentation set, each agent has its own guide. Each book specific to a J2EE agent covers what all J2EE agents have in common as well as covering aspects that are unique to that particular J2EE agent. Similarly, each book specific to a web agent covers what all web agents have in common as well as covering aspects that are unique to that particular web agent.

Who Should Use This Book

This Access Manager Policy Agent 2.2 User's Guide is intended for use by IT professionals who manage access to their network using Sun Java System servers and software. Administrators should understand the following technologies:

Before You Read This Book

Sun Java System Policy Agent software works with Sun Java System Access Manager. Both products work with Sun Java Enterprise System, a software infrastructure that supports enterprise applications distributed across a network or Internet environment. Furthermore, Sun Java System Directory Server is a necessary component in a new Access Manager deployment since it is used as the data store. To understand how these products interact and to understand this book, you should be familiar with the following documentation:

Related Books

Sun Microsystems server documentation sets, some of which are mentioned in this preface, are available at http://docs.sun.com. These documentation sets provide information that can be helpful for a deployment that includes Policy Agent:

Access Manager Documentation Set

Policy Agent 2.2 was first introduced with Access Manager 7, but now also supports Access Manager 7.1. The information in the table that follows specifies documents in the Access Manager 7 documentation set, which is available at the following location:

http://docs.sun.com/app/docs/coll/1292.1

The Access Manager 7.1 documentation set is available at this location:

http://docs.sun.com/app/docs/coll/1292.2

Table P–1 Access Manager 7 2005Q4 Documentation Set

Title 

Description 

Sun Java System Access Manager 7 2005Q4 Release Notes

Available after the product is released. Contains last-minute information, including a description of what is new in this current release, known problems and limitations, installation notes, and how to report issues with the software or the documentation. 

Sun Java System Access Manager 7 2005Q4 Technical Overview

Provides an overview of how Access Manager components work together to consolidate identity management and to protect enterprise assets and web-based applications. Explains basic Access Manager concepts and terminology. 

Sun Java System Access Manager 7 2005Q4 Deployment Planning Guide

Provides information about planning a deployment within an existing information technology infrastructure. 

Sun Java System Access Manager 7 2005Q4 Performance Tuning Guide

Describes how to tune Access Manager and its related components. 

Sun Java System Access Manager 7 2005Q4 Administration Guide

Describes how to use the Access Manager Console as well as how to manage user and service data via the command line. 

Sun Java System Access Manager 7 2005Q4 Federation and SAML Administration Guide

Provides information about the features in Access Manager that are based on the Liberty Alliance Project and SAML specifications. It includes information on the integrated services based on these specifications, instructions for enabling a Liberty-based environment, and summaries of the application programming interface (API) for extending the framework. 

Sun Java System Access Manager 7 2005Q4 Developer’s Guide

Offers information on how to customize Access Manager and integrate its functionality into an organization’s current technical infrastructure. Contains details about the programmatic aspects of the product and its API. 

Sun Java System Access Manager 7 2005Q4 C API Reference

Provides summaries of data types, structures, and functions that make up the Access Manager public C APIs. 

Sun Java System Access Manager 7 2005Q4 Java API Reference

Are generated from Java code using the JavaDoc tool. The pages provide information on the implementation of the Java packages in Access Manager. 

Sun Java System Access Manager Policy Agent 2.2 User’s Guide (this guide)

Provides an overview of Policy Agent software, introducing web agents and J2EE agents. Also provides a list of web agents and J2EE agents currently available. 

Updates to the Release Notes and links to modifications of the core documentation can be found on the Access Manager page at the Sun Java System 2005Q4 documentation web site. Updated documents are marked with a revision date.

Policy Agent 2.2 Documentation Set

This Sun Java System Access Manager Policy Agent 2.2 User's Guide is available in two documentation sets: the Access Manager documentation set as described in Table P–1 and in the Policy Agent 2.2 documentation set as described in this section. The other guides in the Policy Agent 2.2 documentation set are described in the following sections:

Individual Agent Guides

The individual agents in the Policy Agent 2.2 software set are available on a different schedule than Access Manager itself. Therefore, documentation for Access Manager and Policy Agent are available in separate sets, except for this guide, which is available in both documentation sets.

The documentation for the individual agents is divided into two subsets: a web agent subset and a J2EE agent subset.

Each web agent guide provides general information about web agents and installation and configuration information for a specific web agent.

Each J2EE agent guide provides general information about J2EE agents and installation and configuration information for a specific J2EE agent.

The individual agent guides are listed along with supported server information in this guide in the following chapters:

Web Agents

Chapter 2, Access Manager Policy Agent 2.2 Web Agents: Compatibility, Supported Servers, and Documentation

J2EE Agents

Chapter 3, Access Manager Policy Agent 2.2 J2EE Agents: Compatibility, Supported Servers, and Documentation

Release Notes

The Sun Java System Access Manager Policy Agent 2.2 Release Notes are available online after an agent or set of agents is released. The release notes include a description of what is new in the current release, known problems and limitations, installation notes, and how to report issues with the software or the documentation.

Sun Java Enterprise System Product Documentation

Policy Agent 2.2 was first introduced with Sun Java Enterprise System 2005Q4, but now also supports Sun Java Enterprise System 5. The information in the table that follows specifies the key document collections in the Sun Java Enterprise System 2005Q4 documentation set, which is available at the following location:

http://docs.sun.com/prod/entsys.05q4

The documentation collections related to Sun Java Enterprise System 5 are listed at the following location:

http://docs.sun.com/prod/entsys.5

Table P–2 Documentation Collections Related to Sun Java Enterprise System 2005Q4

Title 

Location 

Sun Java System Directory Server: 

http://docs.sun.com/coll/1316.1

Sun Java System Web Server: 

http://docs.sun.com/coll/1308.1

Sun Java System Application Server: 

http://docs.sun.com/coll/1310.1

Sun Java System Message Queue: 

http://docs.sun.com/coll/1307.1

Sun Java System Web Proxy Server: 

http://docs.sun.com/coll/1311.1

Accessing Sun Resources Online

For product downloads, professional services, patches and support, and additional developer information, go to the following:

Download Center

http://wwws.sun.com/software/download

Sun Java System Services Suite

http://www.sun.com/service/sunps/sunone/index.html

Sun Enterprise Services, Solaris Patches, and Support

http://sunsolve.sun.com/

Developer Information

http://developers.sun.com/prodtech/index.html

Contacting Sun Technical Support

If you have technical questions about this product that are not answered in the product documentation, go to:

http://www.sun.com/service/contacting

Related Third-Party Web Site References

Sun is not responsible for the availability of third-party web sites mentioned in this document. Sun does not endorse and is not responsible or liable for any content, advertising, products, or other materials that are available on or through such sites or resources. Sun will not be responsible or liable for any actual or alleged damage or loss caused or alleged to be caused by or in connection with use of or reliance on any such content, goods, or services that are available on or through such sites or resources.

Sun Welcomes Your Comments

Sun is interested in improving its documentation and welcomes your comments and suggestions.

To share your comments, go to and click Send Comments. In the online form, provide the document title and part number. The part number is a seven-digit or nine-digit number that can be found on the title page of the guide or at the top of the document.

For example, the title of this guide is Access Manager Policy Agent 2.2 User's Guide, and the part number is 819-2143.

Documentation, Support, and Training

Sun Function 

URL 

Description 

Documentation 

http://www.sun.com/documentation/

Download PDF and HTML documents, and order printed documents 

Support and Training 

http://www.sun.com/training/

Obtain technical support, download patches, and learn about Sun courses 

Typographic Conventions

The following table describes the typographic changes that are used in this book.

Table P–3 Typographic Conventions

Typeface or Symbol 

Meaning 

Example 

AaBbCc123

The names of commands, files, and directories, and onscreen computer output 

Edit your .login file.

Use ls -a to list all files.

machine_name% you have mail.

AaBbCc123

What you type, contrasted with onscreen computer output 

machine_name% su

Password:

aabbcc123

Placeholder: replace with a real name or value 

The command to remove a file is rm filename.

AaBbCc123

Book titles, new terms, and terms to be emphasized 

Read Chapter 6 in the User's Guide.

Perform a patch analysis.

Do not save the file.

[Note that some emphasized items appear bold online.] 

Shell Prompts in Command Examples

The following table shows the default system prompt and superuser prompt for the C shell, Bourne shell, and Korn shell.

Table P–4 Shell Prompts

Shell 

Prompt 

C shell prompt 

machine_name%

C shell superuser prompt 

machine_name#

Bourne shell and Korn shell prompt 

$

Bourne shell and Korn shell superuser prompt 

#