Run the amadmin command to load that service.
AccessManager-base/bin/amadmin --runasdn "uid=amAdmin,ou=People,<default_org>,< root_suffix>" --password <password> --schema AccessManager-base/samples/policy/SampleWebService.xml |
Copy the properties file to the locale directory of the Access Manager installation.
cp SampleWebService.properties AccessManager-base/locale
Create a service XML files that conforms to AccessManager-base/dtd/sms.dtd, and contains the <Policy> element. See example below.
Create and copy locale properties file to AccessManager-base/locale.
Use amadmin to load the service into Access Manager.
Once the new service is added, you can define rules for the new service in policy definitions.
/etc/opt/SUNWam/config/xml/amWebAgent.xml (Solaris) /etc/opt/sun/identity/config/xml/amWebAgent.xml on (Linux)
<!DOCTYPE ServicesConfiguration PUBLIC "=//iPlanet//Service Management Services (SMS) 1.0 DTD//EN" "jar://com/sun/identity/sm/sms.dtd"> <ServicesConfiguration> <Service name="iPlanetAMWebAgentService" version="1.0"> <Schema i18nFileName="amWebAgent" i18nKey="iplanet-am-web-agent-service-description"> <Global> <AttributeSchema name="serviceObjectClasses" type="list" syntax="string" i18nKey=""> <DefaultValues> <Value>iplanet-am-web-agent-service</Value> </DefaultValues> </AttributeSchema> </Global> <Policy> <AttributeSchema name="GET" type="single" syntax="boolean" uitype="radio" i18nKey="GET"> <IsResourceNameAllowed/> <BooleanValues> <BooleanTrueValue i18nKey="allow">allow</BooleanTrueValue> <BooleanFalseValue i18nKey="deny">deny</BooleanFalseValue> </BooleanValues> </AttributeSchema> <AttributeSchema name="POST" type="single" syntax="boolean" uitype="radio" i18nKey="POST"> <IsResourceNameAllowed/> <BooleanValues> <BooleanTrueValue i18nKey="allow">allow</BooleanTrueValue> <BooleanFalseValue i18nKey="deny">deny</BooleanFalseValue> </BooleanValues> </AttributeSchema> </Policy> </Schema> </Service> </ServicesConfiguration>