Setting the REMOTE_USER Server Variable (Sun Java System Access Manager Policy Agent 2.2 Guide for Microsoft Internet Information Services 6.0)

Sun Java System Access Manager Policy Agent 2.2 Guide for Microsoft Internet Information Services 6.0

Setting the `REMOTE_USER` Server Variable

The property com.sun.am.policy.am.userid.param allows you to configure the user ID parameter passed by the session or user profile information from Access Manager. The user ID value is used by the agent to set the value of the REMOTE_USER server variable. By default, this parameter is set to UserToken and is fetched from session attributes.

It can be set to any other session attribute. Another property determines where to retrieve the value, from user profiles or from session properties.

Example 1: This example demonstrates how to set the user ID parameter with session attributes:

com.sun.am.policy.am.userid.param.type=SESSION (this is default)

com.sun.am.policy.am.userid.param=UserToken (UserId, Principal, or any other session attribute)

Example 2: This example demonstrates how to set the user ID parameter with LDAP user profile attributes:

com.sun.am.policy.am.userid.param.type=LDAP

com.sun.am.policy.am.userid.param=cn (any profile attribute)