Documentation Home
> Sun Java System Access Manager 7 2005Q4 Technical Overview
Sun Java System Access Manager 7 2005Q4 Technical Overview
Book Information
Index
A
B
C
D
E
F
G
H
I
J
L
M
N
O
P
R
S
T
U
V
W
X
Preface
Chapter 1 Introduction to Access Manager
An Access Management Paradigm
The Problem
The Solution
What Access Manager Does
Authentication Service
Policy Service
User Session Management
SAML Service
Identity Federation Service
Logging
How Access Manager Works
Access Manager Architecture
Web Services
Core Components and Services that Power Access Manager
Client APIs
Access Manager Framework
Plug-ins Layer
Access Manager Policy Agents
Architectural Changes In This Release
Access Control Realms
Identity Repository Framework
Realm Mode and Legacy Mode
Distributed Authentication User Interface Component
Delegation Plug-In
Service Configuration Plug-Ins
Chapter 2 User Session Management and Single Sign-On
Overview of Access Manager User Sessions
Cookies and Session Objects
Cookies Store User Information
Objects in the Session Data Structure
Policy Agents
Basic User Session
Initial HTTP Request
User Authentication
Session Validation
Policy Evaluation
Results Logging
Single Sign-On Session
Cross-Domain Single Sign-On Session
Session Termination
User Ends Session
Administrator Ends Session
Access Manager Enforces Timeout Rules
Chapter 3 User Authentication
Authentication Overview
Authentication Plug-In Modules
Authentication Framework
General Authentication Service
Authentication Configuration Service
Inside the Core Authentication Component
Client Detection
Authentication Type Configurations
Redirection URLs
Account Locking
Authentication Chaining
Fully Qualified Domain Name Mapping
Persistent Cookie
Session Upgrade
Validation Plug-in Interface
JAAS Shared State
Presentation Layer
Distributed Authentication User Interface
Authentication Programming Interfaces
Chapter 4 Authorization and the Policy Service
Policy Framework
Access Control Realms
Access Manager Information Tree
About Authorization Policies
Normal Policy
Policy Rules
Policy Subjects
Policy Conditions
Policy Response Providers
Referral Policy
Policy SPIs and Plug-Ins Layer
Policy Client APIs
Chapter 5 Federation Management, SAML, and Web Services
The Need for Federated Identities
The Liberty Alliance Project
Liberty Alliance Frameworks
The Circle of Trust
SAML Specifications
Federation Management Implemented in Access Manager
Identity Federation Framework
Identity Web Services Framework
SAML Service
Federation Management Protocols Flow
Chapter 6 Logging
How the Logging Feature Works
Logging Architecture
amLogging.xml
Log File Formats
Flat File Format
Relational Database Format
Log Files Directory
Recorded Events
Error and Access Logs
Additional Logging Features
Secure Logging
Remote Logging
Log Reading
© 2010, Oracle Corporation and/or its affiliates