The Sun JavaTM System Policy Agent software consists of J2EE (Java 2 Platform Enterprise Edition) agents and web agents. This Access Manager Policy Agent 2.2 User's Guide provides an overview of how Sun Java System Policy Agent 2.2 works, detailing features and processes of Policy Agent that are the same for all J2EE and web agents. The J2EE and web agents have many similarities, but the two types of agents also have some differences. This book covers the similarities in detail while summarizing the differences. This book is designed to help you identify topics relevant to your enterprise needs so that you can explore those topics more fully in other Access Manager and Policy Agent documentation.
Within the Policy Agent documentation set, each agent has its own guide. Each book specific to a J2EE agent covers what all J2EE agents have in common as well as covering aspects that are unique to that particular J2EE agent. Similarly, each book specific to a web agent covers what all web agents have in common as well as covering aspects that are unique to that particular web agent.
This Access Manager Policy Agent 2.2 User's Guide is intended for use by IT professionals who manage access to their network using Sun Java System servers and software. Administrators should understand the following technologies:
Directory technologies
JavaServer PagesTM (JSP) technology
HyperText Transfer Protocol (HTTP)
HyperText Markup Language (HTML)
eXtensible Markup Language (XML)
Web technologies or J2EE technologies
Sun Java System Policy Agent software works with Sun Java System Access Manager. Both products work with Sun Java Enterprise System, a software infrastructure that supports enterprise applications distributed across a network or Internet environment. Furthermore, Sun Java System Directory Server is a necessary component in a new Access Manager deployment since it is used as the data store. To understand how these products interact and to understand this book, you should be familiar with the following documentation:
Sun Java Enterprise System documentation set, which can be accessed online at http://docs.sun.com. All Sun technical documentation is available online through this web site, including the other documentation sets referred to in this list.
You can browse the documentation archive or search for a specific book title, part number, or subject.
Sun Java System Directory Server documentation set.
Sun Java System Access Manager documentation set, which is explained in more detail subsequently in this chapter.
Sun Microsystems server documentation sets, some of which are mentioned in this preface, are available at http://docs.sun.com. These documentation sets provide information that can be helpful for a deployment that includes Policy Agent:
Policy Agent 2.2 was first introduced with Access Manager 7, but now also supports Access Manager 7.1. The information in the table that follows specifies documents in the Access Manager 7 documentation set, which is available at the following location:
http://docs.sun.com/app/docs/coll/1292.1
The Access Manager 7.1 documentation set is available at this location:
http://docs.sun.com/app/docs/coll/1292.2
Table P–1 Access Manager 7 2005Q4 Documentation Set| Title | Description | 
|---|---|
| Available after the product is released. Contains last-minute information, including a description of what is new in this current release, known problems and limitations, installation notes, and how to report issues with the software or the documentation. | |
| Provides an overview of how Access Manager components work together to consolidate identity management and to protect enterprise assets and web-based applications. Explains basic Access Manager concepts and terminology. | |
| Sun Java System Access Manager 7 2005Q4 Deployment Planning Guide | Provides information about planning a deployment within an existing information technology infrastructure. | 
| Sun Java System Access Manager 7 2005Q4 Performance Tuning Guide | Describes how to tune Access Manager and its related components. | 
| Sun Java System Access Manager 7 2005Q4 Administration Guide | Describes how to use the Access Manager Console as well as how to manage user and service data via the command line. | 
| Sun Java System Access Manager 7 2005Q4 Federation and SAML Administration Guide | Provides information about the features in Access Manager that are based on the Liberty Alliance Project and SAML specifications. It includes information on the integrated services based on these specifications, instructions for enabling a Liberty-based environment, and summaries of the application programming interface (API) for extending the framework. | 
| Offers information on how to customize Access Manager and integrate its functionality into an organization’s current technical infrastructure. Contains details about the programmatic aspects of the product and its API. | |
| Provides summaries of data types, structures, and functions that make up the Access Manager public C APIs. | |
| Are generated from Java code using the JavaDoc tool. The pages provide information on the implementation of the Java packages in Access Manager. | |
| Sun Java System Access Manager Policy Agent 2.2 User’s Guide (this guide) | Provides an overview of Policy Agent software, introducing web agents and J2EE agents. Also provides a list of web agents and J2EE agents currently available. | 
Updates to the Release Notes and links to modifications of the core documentation can be found on the Access Manager page at the Sun Java System 2005Q4 documentation web site. Updated documents are marked with a revision date.
This Sun Java System Access Manager Policy Agent 2.2 User's Guide is available in two documentation sets: the Access Manager documentation set as described in Table P–1 and in the Policy Agent 2.2 documentation set as described in this section. The other guides in the Policy Agent 2.2 documentation set are described in the following sections:
Individual Agent Guides (each agent has its own guide)
The individual agents in the Policy Agent 2.2 software set are available on a different schedule than Access Manager itself. Therefore, documentation for Access Manager and Policy Agent are available in separate sets, except for this guide, which is available in both documentation sets.
The documentation for the individual agents is divided into two subsets: a web agent subset and a J2EE agent subset.
Each web agent guide provides general information about web agents and installation and configuration information for a specific web agent.
Each J2EE agent guide provides general information about J2EE agents and installation and configuration information for a specific J2EE agent.
The individual agent guides are listed along with supported server information in this guide in the following chapters:
The Sun Java System Access Manager Policy Agent 2.2 Release Notes are available online after an agent or set of agents is released. The release notes include a description of what is new in the current release, known problems and limitations, installation notes, and how to report issues with the software or the documentation.
Policy Agent 2.2 was first introduced with Sun Java Enterprise System 2005Q4, but now also supports Sun Java Enterprise System 5. The information in the table that follows specifies the key document collections in the Sun Java Enterprise System 2005Q4 documentation set, which is available at the following location:
http://docs.sun.com/prod/entsys.05q4
The documentation collections related to Sun Java Enterprise System 5 are listed at the following location:
http://docs.sun.com/prod/entsys.5
Table P–2 Documentation Collections Related to Sun Java Enterprise System 2005Q4| Title | Location | 
|---|---|
| Sun Java System Directory Server: | |
| Sun Java System Web Server: | |
| Sun Java System Application Server: | |
| Sun Java System Message Queue: | |
| Sun Java System Web Proxy Server: | 
For product downloads, professional services, patches and support, and additional developer information, go to the following:
If you have technical questions about this product that are not answered in the product documentation, go to:
http://www.sun.com/service/contacting
Sun is not responsible for the availability of third-party web sites mentioned in this document. Sun does not endorse and is not responsible or liable for any content, advertising, products, or other materials that are available on or through such sites or resources. Sun will not be responsible or liable for any actual or alleged damage or loss caused or alleged to be caused by or in connection with use of or reliance on any such content, goods, or services that are available on or through such sites or resources.
Sun is interested in improving its documentation and welcomes your comments and suggestions.
To share your comments, go to and click Send Comments. In the online form, provide the document title and part number. The part number is a seven-digit or nine-digit number that can be found on the title page of the guide or at the top of the document.
For example, the title of this guide is Access Manager Policy Agent 2.2 User's Guide, and the part number is 819-2143.
| Sun Function | URL | Description | 
|---|---|---|
| Documentation | Download PDF and HTML documents, and order printed documents | |
| Support and Training | Obtain technical support, download patches, and learn about Sun courses | 
The following table describes the typographic changes that are used in this book.
Table P–3 Typographic Conventions| Typeface or Symbol | Meaning | Example | 
|---|---|---|
| AaBbCc123 | The names of commands, files, and directories, and onscreen computer output | Edit your .login file. Use ls -a to list all files. machine_name% you have mail. | 
| AaBbCc123 | What you type, contrasted with onscreen computer output | machine_name% su Password: | 
| aabbcc123 | Placeholder: replace with a real name or value | The command to remove a file is rm filename. | 
| AaBbCc123 | Book titles, new terms, and terms to be emphasized | Read Chapter 6 in the User's Guide. Perform a patch analysis. Do not save the file. [Note that some emphasized items appear bold online.] | 
The following table shows the default system prompt and superuser prompt for the C shell, Bourne shell, and Korn shell.
Table P–4 Shell Prompts| Shell | Prompt | 
|---|---|
| C shell prompt | machine_name% | 
| C shell superuser prompt | machine_name# | 
| Bourne shell and Korn shell prompt | $ | 
| Bourne shell and Korn shell superuser prompt | # |