Deployment Example 1: Access Manager 7.0 Load Balancing, Distributed Authentication UI, and Session Failover

ProcedureTo Create an Agent Profile on Access Manager

The web agent will, by default, use the account with the uid UrlAccessAgent to authenticate to Access Manager. Creating an agent profile is not a requirement for Web Policy Agents. You can use the default values and never change the Web Policy Agent user name. However, in certain cases, you might want to change these default values. For example, if you want to audit the interactions between multiple agents and the Access Manager server, you want be able to distinguish one agent from another. This would not be possible if all the agents used the same default agent user account. For more information, see the Sun Java System Access Manager Policy Agent 2.2 User’s Guide.

  1. Create an agent profile on Access Manager.

    This new account will be used by Web Policy Agent 1 to access the Access Manager server.

    1. Go to Access Manage load balancer URL:

    2. Log in to the Access Manager console using the following information:





    3. On the Access Control tab, under Realms, click the realm name

    4. Click the Subjects tab.

    5. Click the Agents tab.

    6. On the Agent page, click New.

    7. On the New Agent page, provide the following information:





      Password Confirm:


      Device State:

      Choose Active.

    8. Click Create.

      The new agent webagent–1 is now display in the list of Agent Users.