ALES Integration Guide

     Previous  Next    Open TOC in new window    View as PDF - New Window  Get Adobe Reader - New Window
Content starts here

Storing and Versioning ALES Policy with ALER

This section describes how to integrate AquaLogic Enterprise Security with AquaLogic Enterprise Repository. It includes the following topics:

 

Overview

You can use AquaLogic Enterprise Repository to manage ALES policy data as ALER assets. By integrating ALER with ALES, you can:

Note: While the ALER console allows direct modification of data in an ALES Policy Asset, it is recommended that policy changes first be made in ALES and then imported into ALER. See Importing/Exporting Policy Data Between ALES and ALER.

 

Integration Tasks

To manage ALES policies with ALER:

  1. Set ALER import/export properties as described in Set ALER System Properties for Import and Export.
  2. Import the ALES Policy Asset Type into ALER, as described in Import the ALES Policy Asset Type into ALER.
  3. Manage the ALES Policy Assets as described in Manage ALES Policy Assets (ALER Console).

 

Set ALER System Properties for Import and Export

Follow these steps to set the required import/export properties in ALER:

  1. In the ALER console, open the Admin tab.
  2. Select System Settings from the left column.
  3. Under Import / Export and Introspection > Import / Export, set Import/Export Client cmee.importexport.enabled to True.
  4. Under Open API > Common, set Open API Enabled cmee.extframework.enabled to True.
  5. Click Save.

 

Import the ALES Policy Asset Type into ALER

To manage ALES policies in ALER, the ALES Policy asset type must be imported in ALER. This asset type defines ALES metadata, such as privileges, policy, resources, and resource attributes. Follow these steps:

  1. In the ALER console, open the Admin tab.
  2. Select Import Export > Import/Export Client.
    3. Figure 7-1 Starting the ALER Import/Export Client


    Starting the ALER Import/Export Client

  3. In the Import tab’s Select file to import field, navigate to ALES_ADMIN_HOME/data/aler and select the appropriate ALES Policy Asset Type zip file. Then click Next twice.

    4. ALES 2.6—ales_policy-asset-type.zip
    ALES 3.0—ales_policy-asset-type-3.0.0.zip

  4. Open the Assets tab and click Edit/Manage Assets.
  5. In the Asset Editor, select Actions > Manage Types and verify that ALES Policy Asset Type appears in the Type Manager.
    6. Figure 7-2 ALER Type Manager


    ALER Type Manager

 

Manage ALES Policy Assets (ALER Console)

The ALER Asset Editor displays ALES Policy Assets in the following tabs (see Figure 7-3):

Versioning ALES Assets

ALER maintains version information for its assets. ALES Policy Assets use version numbers in the format N.N (1.0, for example). When importing ALES Policy Assets into ALER for the first time, the version number is set to 1.0. When you subsequently import the same assets, the version number increments by 1. You can also modify the version number of an asset within ALER.

Importing/Exporting Policy Data Between ALES and ALER

The policyIX utility can perform direct import/export of policy asset data between ALES and ALER or it can generate files that can be used to import and export in separate steps.

PolicyIX makes use of configuration files for imports/exports with ALER. For details, see Import/Export Configuration Files for ALER.

For more information about policyIX itself, see PolicyIX in the ALES Administration Reference

Export from ALES to ALER

To export policy assets directly to ALER, run policyIX with the -exportToALER option:

policyIX -exportToALER <config_file>

To export the data to ALER using a file:

policyIX -exportToALER <config_file> <file_name>

Importing to ALES from ALER

To import directly into ALES from ALER, use the -importFromALER option:

policyIX -importFromALER <config_file>

To import using a file:

  1. Generate a file that obtains the data from ALER:
    2. policyIX -importFromALER <config_file> <file_name>
  2. Import the data from the file:
    3. policyIX -import <config_file> <file_name>

Import/Export Configuration Files for ALER

This section describes the configuration files used for imports/exports between ALES and ALER.

Note: Further information about configuration files used with PolicyIX can be obtained by examining a sample file (ALES_ADMIN_HOME/config/policyIX_config.xml) or by consulting PolicyIX: config.xml in the ALES Administration Reference guide.

The configuration file uses XML syntax to specify required ALER information.

<aler_configuration>

A parent element containing all required <aler_property> elements.

<aler_property>

Specifies the name and value of an ALER property using the format:
<aler_property name="<property_name>" value=”<value>”/>

server_version—ALER Server version (2.6 or 3.0)
server_url—ALER connection URL
username—user name for connecting to ALER
userPassword—user password
assetName—name of the asset
assetDescription—description of the asset
importAssetVersion—Asset version to import; valid only if the -importFromALER option is used in the policyIX command.

Listing 7-1 shows the contents of an example file:

Listing 7-1 Configuration for ALER Import and Export

<aler_configuration>
<aler_property name="server_version" value=”3.0”/>
<aler_property name="server_url"
value=http://123.43.32.3546:7101/aler/services/FlashlineRegistry/>
<aler_property name="userName" value="admin"/>
<aler_property name="userPassword" value="tan66kds9"/>
<aler_property name="assetName" value="MyALESPolicy"/>
<aler_property name="assetDescription" value="An ALES Policy asset"/>
<aler_property name="importAssetVersion" value="2"/>
</aler_configuration>


  Back to Top       Previous  Next