Introduction
Document Scope and Audience
Guide to this Document
Related Documentation
Contact Us!
Securing Web Servers
Overview
Single Sign-On
Constraints and Limitations
Prerequisites
Integration Tasks
Define the Security Providers
Define Web Server Resources in ALES
Define Policies
Authorization Policies
Role Mapping Policies
Distribute the Policies
Set Up and Test the Sample Application
Implementing Web Single Sign-On with ALES Identity Assertion
Securing Administrative Access to WebLogic Servers
Overview
Prerequisites
Integration Tasks
Define Security Providers for WebLogic 8.1
Define Security Providers for WebLogic 9.x/10.0
ALES Security Providers Extension
Using the WebLogic Console
Using the ALES Console
Define the Administrative User in ALES
Define the WebLogic Server Resources in ALES
Define the Administrative Policies
Authorization Policies
Role Mapping Policies
Distribute the Policies
Securing Applications Developed Using BEA Workshop for WebLogic
Overview
ALES Annotations Plugin
Integration Tasks
Set Up the ALES Annotations Plug-in
Using ALES Annotations in a WebLogic Bean Class
Add ALES Annotations to the WebLogic Bean Class
Add ALES Information to the Project
Export the Policy File from Workshop
Import the Policy File into ALES
Define Policies for the Imported Policy File
ALES Tag Library for Workshop
Prerequisites
ALES Tag Library Tags
Integration Tasks
Add the Tag Library to Workshop
Using ALES Tags in JSP Pages
Define the Policies to Secure JSP Components
Deploy the JSP Application
ALES Tag Library Reference
isAccessAllowed
isAccessNotAllowed
isAccessAllowedQueryResources
getUserRoles
isUserInRole
setSecurityContext
recordEvent
Attribute
Securing AquaLogic Data Services Platform
Overview
Use-Case
Integration with ALDSP 2.5
Prerequisites for ALDSP 2.5
Integration Tasks for ALDSP 2.5
Define Security Providers for ALDSP 2.5
Enable ALDSP 2.5 Elements for Access Control
Define ALDSP 2.5 Identities in ALES
Define ALDSP 2.5 Resources in ALES
Define Policies for ALDSP 2.5
Distribute Policies
Integration with ALDSP 3.0
Prerequisites
Integration Tasks for ALDSP 3.0
Define Security Providers for ALDSP 3.0
Enable ALDSP 3.0 Elements for Access Control
Define ALDSP 3.0 Identities in ALES
Define ALDSP 3.0 Resources in ALES
Define Policies for ALDSP 3.0
Distribute the Policies
Pre-Processing Data Redaction
Pre-Processing Obligation Types
Required ALES Response Attributes
Additional Integration Tasks
Post-Processing Data Redaction
ALDSP Security XQuery Functions
ALES Java Methods
Policies Returning Attributes as ALDSP Obligations
Defining a Security XQuery Function
Integrating the ALES Java Methods
ALES Security XQuery Function (ALDSP 2.5)
ALES Security XQuery Function (ALDSP 3.0)
Securing WebLogic Portal Applications
Overview
Use-Case Scenario
Constraints and Limitations
Prerequisites
Integration Tasks
Define the Security Providers
Define Portal Identities in ALES
Define Portal Resources in ALES
Realm Resource
Shared Resources
Console Resources
PortalApp Resources
Define Policies
Authorization Policies
Role Mapping Policies
Policies for Visitor Entitlements
Policies for Desktops
Policies for Books
Policies for Pages
Policies for Portlets
Policies for Look and Feel
Policies for Portlets using Instance ID
Storing and Versioning ALES Policy with ALER
Overview
Integration Tasks
Set ALER System Properties for Import and Export
Import the ALES Policy Asset Type into ALER
Manage ALES Policy Assets (ALER Console)
Versioning ALES Assets
Importing/Exporting Policy Data Between ALES and ALER
Import/Export Configuration Files for ALER
Securing AquaLogic Service Bus Runtime Resources
Overview
Prerequisites
Integration Tasks
Define the Security Providers
Define ALSB Resources in ALES
Define Identities
Define Policies for ALSB
Authorization Policies
Role Mapping Policies
Distribute Changes
Verify SSM Configuration Using PerfDBAuditor
Securing ALES Components
Default Objects
Creating a New Admin User
ALES Resources
Administrative Operations
Privileges
Context Attributes
Evaluation Functions
Authorization Queries
Enumerated Types
ALES Identities
Role Mapping Policies
Authorization Policies
Setting Up Application Security Administrators
Establishing a Resource Parent for the Application
Policies for Application-Level Administration
ALES Adapter for Sun Identity Manager
Set Up ALES Resource in Sun Identity Manager
Enable Active Sync for ALES Resource
Using the WebLogic 9.x SSM
Using the Weblogic 8.x SSM
Set Up Active Sync in Identity Manager