![]() ![]() ![]() ![]() ![]() ![]() ![]() |
This section describes how to integrate AquaLogic Enterprise Security with AquaLogic Enterprise Repository. It includes the following topics:
AquaLogic Enterprise Repository (ALER) manages the metadata for any type of software asset, from business processes and Web services to patterns, frameworks, applications, and components. You can use AquaLogic Enterprise Repository to manage AquaLogic Enterprise Security policy data as ALER software assets. By integrating ALER with ALES, you can:
See the AquaLogic Enterprise Repository documentation at http://download.oracle.com/docs/cd/E13168_01/aler/docs26/index.html.
The main steps in setting up ALER to manage ALES assets are:
In order to use the ALES policyIX utility to import and export ALES assets to ALER, set to true the following system properties in ALER:
To set these system properties:
Import the ALES Policy Asset Type into ALER:
ALES_ADMIN_HOME
/lib/alesAssetSchemaObjects.jar
. Click Next twice.Verify that the ALES Policy Asset Type was created:
Once you have set up the ALES Policy Asset Type in ALER, you can use ALER to manage workflow, policy approval, and policy versioning. The ALER console also gives you the ability to directly modify data in an ALES Policy Asset. This is not recommended, however. Instead, changes to ALES Policy Asset data should be made in ALES and imported into ALER. See Importing and Exporting with policyIX.
In ALER, the term asset is used to describe an object that contains metadata. Before an asset can be created, there must be an asset type by which to categorize the asset. An asset type contains the structure of the asset. The ALER asset type named ALES Policy is a defined asset type in ALER that contains ALES metadata, such as privileges, policy, resources, and resource attributes. An ALES Policy Asset can be considered a container of ALES policy information.
The ALER Asset Editor displays ALES Policy Assets in the following tabs (see Figure 13-3):
ALER maintains version information for its assets. ALES Policy Assets use version numbers in the format N.N (1.0, for example). When you import ALES Policy Assets into ALER for the first time, the version number is set to 1.0. When you subsequently import the same assets, the version number is incremented by 1. You can also modify the version number of an asset within ALER.
AquaLogic Enterprise Security includes a utility named policyIX that you can use to import and export policy data from ALER. You can use policyIX to import or export directly between ALES and ALER, or you can import or export from a policy file. Importing or exporting from a file does not require you to be able to connect to a running ALES Administration Server.
To export policy assets to ALER from ALES, run policyIX with the -exportToALER
option:
policyIX -exportToALER <config-file>
To export policy data from a policy file to ALER, run policyIX with the -exportToALER
option and specify a destination file:
policyIX -exportToALER <config-file> <policy-file>
To import policy data to ALES from ALER, run policyIX with the -importFromALER
option:
policyIX -importFromALER <config-file>
To import policy data from ALER to a policy file, run policyIX with the -importFromALER
option and specify a destination file:
policyIX -importFromALER <config-file> <policy-file>
You can subsequently import the policy data from the policy file into ALES with a command like:
policyIX -import <config-file> <policy-file>
For more information, see PolicyIX in the ALES Adminstration Reference
The policyIX utility uses a configuration file, the location of which is specified as an argument. A sample policyIX configuration file can be found at ALES_ADMIN_HOME
/config/policyIX_config.xml
. See
PolicyIX: config.xml in the ALES Adminstration Reference or the comments in the sample policyIX_config.xml
file for information about the values to include in your configuration file. In your configuration file, specify the following ALER-related elements:
aler_property
elements.
aler_property
element:
server_url
- ALER connection URLusername
- user name to use to connect to ALERuserPassword
- user password to connect to ALERassetDescription
- a description of the assetassetName
- name of the asset to export or importimportAssetVersion
- Asset version to import; valid only if the -importFromALER
policyIX option is used.<aler_configuration>
<!-- ALER Connection URL -->
<aler_property name="server_url"
value=http://localhost:7101/aler/services/FlashlineRegistry/>
<!-- User name and password to user to connect to ALER-->
<aler_property name="userName" value="admin"/>
<aler_property name="userPassword" value="admin"/>
<!-- Name of the ALER asset to export/import -->
<aler_property name="assetName" value="MyALESPolicy"/>
<aler_property name="assetDescription"
value="This is an ALES Policy asset"/>
<!-- Asset version to import, only valid if the -importFromAler switch is used -->
<aler_property name="importAssetVersion" value="2"/>
</aler_configuration>
![]() ![]() ![]() |