Defining Privileges for an Access Manager 7.0 to 7.1 Upgrade
If you have upgraded Access Manager from version 7.0 to 7.1, the privilege configuration differs from that of a new Access Manager 7.1 installation, however privileges for policy administrators, realm administrators and log administrators are still supported. To assign or modify privileges, click the name of the role or group you wish to edit. You can select from the following:
- Read only access to data stores
-
Defines read access privileges to datastores for policy administrators.
- Read and write access to all log files
-
Defines both read and write access privileges for log administrators.
- Write access to all log files
-
Defines only write access privileges for log administrators.
- Read access to all log files
-
Defines only read access privileges for log administrators.
- Read and write access only for policy properties
-
Defines read and write access privileges for policy administrators.
- Read and write access to all realm and policy properties
-
Defines read and write access privileges for realm administrators.
- Read only access to all properties and services
-
Defines read access privileges to all properties and services for policy administrators.
Access Manager does not support the following definitions used either separately or together:
-
Read only access to data stores
-
Read only access to all properties and services
These privilege definitions must be used with the “Read and write access only for policy properties” definition to define delegation control for policy administrators.
- © 2010, Oracle Corporation and/or its affiliates