Access Manager 6 2005Q1 (6.3) and Access Manager 7 2005Q4 Legacy Mode

Overview

Legacy Mode is based on the Access Manager 6 2005Q1 (6.3) architecture. This legacy Access Manager architecture uses the LDAP directory information tree (DIT) that comes with Sun Java System Directory Server. In Legacy Mode, both user information and access control information are stored in LDAP organizations. Here, the delegation model is based on LDAP Roles, and not LDAP Groups. The ACIs are typically based on administrative roles, and they set by the Access Manager SDK at the time of role-creation. The relevant roles are:

• Top-level Admin role

• Top-level Help Desk Admin role

• Top-level Policy Admin role

• Organization Admin role

• Organization Help Desk Admin role

• Organization Policy Admin role

• People Container Admin role (People Admin)

• Group Admin role

• Container Admin role

• Deny Write Access role (for anonymous access)

In addition, there are the following types of ACIs:

• User

• Miscellaneous

Access Manager 7 2005Q4, when configured in Legacy Mode of operation, still uses the Directory Server ACI model to provide delegation to be backward-compatible.