Documentation Home
> Sun Java System Access Manager 7.1 Technical Overview
Sun Java System Access Manager 7.1 Technical Overview
Book Information
Index
A
C
D
E
F
G
H
I
J
L
M
N
O
P
R
S
T
U
V
W
X
Preface
Chapter 1 Introduction to Access Manager
An Access Management Paradigm
The Problem
The Solution
What Access Manager Does
Access Manager Installation Modes
Realm Mode
Legacy Mode
Access Manager Architecture
Access Manager Framework
Access Manager Information Tree
Realms
Identity Repository Framework
Access Manager Repository Plug-in (Sun Java System Directory Server)
Active Directory
Generic Lightweight Directory Access Protocol (LDAP) version 3
Flat Files Repository
Sun Directory Server With Access Manager Schema
Core Components and Internal Services
Web Services
SPIs and Plug-ins
Authentication Plug-in
Delegation Plug-in
Identity Repository Management Plug-in
Policy Plug-in
Service Configuration Plug-in
AM SDK Plug-in
Client APIs
Access Manager Policy Agents
How Access Manager Works
Authentication Service
Policy Service
User Session Management
SAML Service
Federation Service
Logging
Chapter 2 User Session Management and Single Sign-On
User Sessions and the Session Service
Sessions, Session Tokens, and Cookies
Policy Agents
Basic User Session
Initial HTTP Request
User Authentication
Session Validation
Policy Evaluation and Enforcement
Logging Results
Single Sign-On Session
Cross-Domain Single Sign-On Session
Session Termination
User Ends Session
Administrator Ends Session
Access Manager Enforces Timeout Rules
Session Quota Constraints
Chapter 3 Authentication
Authentication Overview
Authentication Modules
Authentication Configuration Services
General Authentication Service
Authentication Configuration Service
Authentication Service User Interface
Distributed Authentication User Interface
Inside the Core Authentication Component
Client Detection Service
Authentication Type Configurations
Login URLs and Redirection URLs
Account Locking
Authentication Chaining
Fully Qualified Domain Name Mapping
Persistent Cookie
Session Upgrade
Validation Plug-in Interface
JAAS Shared State
Authentication Programming Interfaces
Chapter 4 Authorization and the Policy Service
Authorization Overview
Access Control and Realms
Policy Types
Normal Policy
Rules
Subjects
Conditions
Response Providers
Referral Policy
Policy Framework
Policy Service
Policy Configuration Service
Policy SPIs and Plug-Ins Layer
Policy Client APIs
Chapter 5 Federation, SAML, and Web Services
Federating Identities
The Liberty Alliance Project
How Federation Works
The Web Services Stack
Implemented Services
Web Services Process
SAML Service
Chapter 6 Logging and the Java Enterprise System Monitoring Framework
Logging Overview
Logging Service
Logging Configuration
Recorded Events
Log Files
Log File Formats
Flat File Format
Relational Database Format
Error and Access Logs
Access Manager Component Logs
Additional Logging Features
Secure Logging
Remote Logging
Log Reading
Java Enterprise System Monitoring Framework
© 2010, Oracle Corporation and/or its affiliates