Documentation Home
> Sun Java System Access Manager Policy Agent 2.2 Guide for BEA WebLogic Server/Portal 10
Sun Java System Access Manager Policy Agent 2.2 Guide for BEA WebLogic Server/Portal 10
Book Information
Index
A
B
C
D
F
G
I
L
N
P
R
S
U
W
Preface
Chapter 1 Introduction to J2EE Agents for Policy Agent 2.2
Uses of J2EE Agents
J2EE Agents and an Online Auction Application
J2EE Agents and a Web-Based Commerce Application
J2EE Agents and a Content-Based Web Application
How J2EE Agents Work
What’s New About J2EE Agents
Removal of J2EE Agent Dependency on LDAP and on Administrative Accounts
Removal of J2EE Agent Dependency on LDAP
Removal of J2EE Agent Dependency on Administrative Accounts
Enhanced J2EE Agent Installation Process
J2EE Agent Support for Installation Using Non-Administrative User Accounts
Secure Handling of Sensitive Information by J2EE Agents
Self-Contained Installation of J2EE Agents
J2EE Agent Support for Multiple Physical Installations
J2EE Agent Support for Client Identification Based on Custom HTTP Headers
J2EE Agent Specific Application for Housekeeping Tasks
J2EE Agent URL Policy Enhancements
Remote Policy Evaluation Failover in J2EE Agents
Configurable Policy Evaluation Mechanism in J2EE Agents
Composite Advice in J2EE Agents
Policy Based Response Attributes in J2EE Agents
J2EE Agent Support for Flexible User Mapping Mechanisms
J2EE Agent Support for Fetching User Session Attributes
J2EE Agent Support for Version Checking
J2EE Agent Support for Not-Enforced IP Lists
J2EE Agent Support for Custom Response Headers
J2EE Agent Support for Application Logout Integration
J2EE Agent Support for Application Specific Agent Filter Operation Modes
J2EE Agent Support for Affinity-Based Login URL Selection
J2EE Agent Support for a Sample Application
J2EE Agent Backward Compatibility With Access Manager 6.3
Information About Using J2EE Agents in Policy Agent 2.2
Enhanced Installation Process for J2EE Agents in Policy Agent 2.2
Increased Functionality of the agentadmin Program for J2EE Agents in Policy Agent 2.2
The Sample Application
Chapter 2 Vital Installation Information for a J2EE Agent in Policy Agent 2.2
Format of the Distribution Files for a J2EE Agent Installation in Policy Agent 2.2
To Unzip a .zip Compressed File of a J2EE Agent in Policy Agent 2.2
Role of the agentadmin Program in a J2EE Agent for Policy Agent 2.2
agentadmin --install
agentadmin --uninstall
agentadmin --listAgents
agentadmin --agentInfo
agentadmin --version
agentadmin --encrypt
agentadmin --getEncryptKey
agentadmin --uninstallAll
agentadmin --getUuid
agentadmin --usage
agentadmin --help
WebLogic Server/Portal 10 Agent Directory Structure
WebLogic Server/Portal 10 Agent PolicyAgent-base Directory
WebLogic Server/Portal 10 Files and Subdirectories
Installing and Configuring the WebLogic Server/Portal 10 Agent With Access Manager 6.3
To Install and Configure the WebLogic Server/Portal 10 Agent With Access Manager 6.3
Creating a J2EE Agent Profile
To Create an Agent Profile
Chapter 3 Installing the Policy Agent for WebLogic Server/Portal 10
Choosing an Installation Environment: Cluster or Stand-Alone
Installing the WebLogic Server/Portal 10 Agent in a Clustered Environment
Installing the Agent for WebLogic Server/Portal 10 in a Stand-Alone Environment
Supported Platforms and Compatibility of Agent for WebLogic Server/Portal 10
Platform and Version Support of Agent for WebLogic Server/Portal 10
Compatibility of Agent for WebLogic Server/Portal 10 With Access Manager
Compatibility of Policy Agent 2.2 With Access Manager
Compatibility of Policy Agent 2.2 With Access Manager 6 2005Q1 (6.3)
Preparing to Install the WebLogic Server/Portal 10 Agent
To Prepare to Install the WebLogic Server/Portal 10 Agent
Installing the WebLogic Server/Portal 10 Agent
To Install the WebLogic Server/Portal 10 Agent
About Installation Prompts in Agent for WebLogic Server/Portal 10
Example of Installation Program Interaction for the WebLogic Server/Portal 10 Agent
Summary of a J2EE Agent Installation in Policy Agent 2.2
Implications of Specific Deployment Scenarios for the WebLogic Server/Portal 10 Agent
Installing the Agent on Multiple WebLogic Server/Portal 10 Instances on the Same Domain
Installing the Agent on a Different WebLogic Server/Portal 10 Domain
Installing the WebLogic Server/Portal 10 Agent on the Access Manager Web Container
Chapter 4 Post-Installation Tasks for the WebLogic Server/Portal 10 Agent
Post-Installation Steps for the WebLogic Server/Portal 10 Agent
Configuring WebLogic Server/Portal 10 Instance With the Agent Classpath and Agent Java Options
To Configure WebLogic Server/Portal 10 Instance With Agent Classpath and Agent Java Options
Deploying the Agent Application
Configuring the Agent Authentication Provider for the WebLogic Server/Portal 10 Agent
To Configure the Agent Authentication Provider Specifically for WebLogic Server 10
Adding a WebLogic Administrator to the Bypass List of Agent for WebLogic Server/Portal 10
To Add a WebLogic Administrator to the Bypass List of Agent for WebLogic Server/Portal 10
Installing the Agent Filter for the WebLogic Server/Portal 10 Agent
To Install the Agent Filter for the Deployed Application on Agent for WebLogic Server/Portal 10
Conditional Post-Installation Steps for the WebLogic Server/Portal 10 Agent
Updating the Agent Profile
To Update the Agent Profile for J2EE Agents in Policy Agent 2.2
Creating the Necessary URL Policies
Mapping Access Manager Roles to Principal Names
Chapter 5 Installing and Configuring the WebLogic Server/Portal 10 Agent in a Cluster
Installing Agent for WebLogic Server/Portal 10 on the Administration Server
To Install Agent for WebLogic Server/Portal 10 on the Administration Server
Installing Agent for WebLogic Server/Portal 10 on a Managed Server
To Install Agent for WebLogic Server/Portal 10 on a Managed Server
Post-Installation Tasks of Agent for WebLogic Server/Portal 10 in a Clustered Environment
Add a WebLogic Administrator to the Bypass List of Agent for WebLogic Server/Portal 10: Cluster
Install the Agent Filter for the Deployed Application on Agent for WebLogic Server/Portal 10: Cluster
Deploy the Agent Application of Agent for WebLogic Server/Portal 10: Cluster
To Deploy the Agent Application in the WebLogic Server/Portal 10 Administration Console
Configuring Node Manager With Agent for WebLogic Server/Portal 10: Clustered Setup
To Configure Node Manager With Agent for WebLogic Server/Portal 10: Clustered Setup
Chapter 6 Managing Policy Agent 2.2 for WebLogic Server/Portal 10
Key Features and Tasks Performed With the J2EE AMAgent.properties Configuration File
Hot-Swap Mechanism in J2EE Agents
List Constructs in the J2EE AMAgent.properties Configuration File
Map Constructs in the J2EE AMAgent.properties Configuration File
J2EE Property Configuration: Application Specific or Global
J2EE Agent Filter Modes
J2EE Agent Filter Mode-NONE
J2EE Agent Filter Mode - SSO_ONLY
J2EE Agent Filter Mode - J2EE_POLICY
J2EE Agent Filter Mode - URL_POLICY
J2EE Agent Filter Mode - ALL
Enabling Web-Tier Declarative Security in J2EE Agents
To Enable J2EE Agents to Handle Security Constraint Settings
Web-Tier Security Details
Customizing Agent Response for Form Login
To Customize the Agent Response to Form Login
Enabling Failover in J2EE Agents
To Enable Failover in J2EE Agents
Login Attempt Limit in J2EE Agents
Redirect Attempt Limit in J2EE Agents
Not-Enforced URI List in J2EE Agents
Inverting the Not-Enforced URI List
Fetching Attributes in J2EE Agents
Fetching Profile Attributes in J2EE Agents
Fetching Session Attributes in J2EE Agents
Fetching Policy Response Provider Attributes in J2EE Agents
Methods for Fetching Attributes in J2EE Agents
Fetching Attributes as HTTP Headers
Fetching Attributes as Request Attributes
Fetching Attributes as Cookies
Common Attribute Fetch Processing Related Properties
Configuring FQDN Handling in J2EE Agents
Using Cookie Reset Functionality in J2EE Agents
Enabling Port Check Functionality in J2EE Agents
Key Features and Tasks Performed With the J2EE agentadmin Program
Key Features and Tasks Performed With the J2EE Agent API
Class AmFilterManager
Available API for Class AmFilterManager
Interface IAmSSOCache
Available API for Interface IAmSSOCache
Class AmSSOCache
Available API for Class AmSSOCache
Usage of New J2EE Agent API in Policy Agent 2.2
Key Features and Tasks Performed With WebLogic Server/Portal 10
Removing the Agent Authenticator From WebLogic Server/Portal 10
To Remove the Agent Authenticator From WebLogic Server/Portal 10
Chapter 7 Uninstalling the WebLogic Server/Portal 10 Agent
Preparing to Uninstall the WebLogic Server/Portal 10 Agent
Removing the Agent Authentication Provider
To Remove the Agent Authentication Provider
Performing Unconfiguration Tasks
To Perform Various Unconfiguration Tasks
Uninstalling the WebLogic Server/Portal 10 Agent
To Uninstall the WebLogic Server/Portal 10 Agent
Appendix A Silent Installation and Uninstallation of a J2EE Policy Agent
About the Silent Installation and Uninstallation of a J2EE Agent
Generating a State File for a J2EE Agent Installation
To Generate a State File for a J2EE Agent Installation
Using a State File for a J2EE Agent Silent Installation
To Install a J2EE Agent Using a State File
Generating a State File for a J2EE Agent Uninstallation
To Generate a State File for a J2EE Agent Uninstallation
Using a State File for a J2EE Agent Silent Uninstallation
To Uninstall a J2EE Agent Using a State File
Appendix B J2EE Agent AMAgent.properties Configuration File in Policy Agent 2.2
Location of the J2EE AMAgent.properties Configuration File
List of Properties in the J2EE AMAgent.properties Configuration File
Description of Properties in the J2EE AMAgent.properties Configuration File
Filter Operation Mode Property
User Mapping Properties
Client Identification Properties
Configuration Reload Interval Property
Locale Identification Properties
Organization Name Property
Audit Log Properties
Web Service Processing Properties
Access Denied URI Property
Form Login Processing Properties
Local Authentication Processing Properties
Goto Parameter Name Property
Login URL Property
Login URL Prioritized Flag Property
Agent Server Properties
Login Attempt Limit Property
URL Decode SSO Token Flag Property
SSO Cache Enable Property
Cookie Reset Processing Properties
CDSSO Processing Properties
Logout Processing Properties
FQDN Processing Properties
Legacy User Agent Processing Properties
Custom Response Headers Property
Redirect Attempt Limit Property
Port Check Processing Properties
Not-Enforced URI Processing Properties
Not-Enforced Client IP Processing Properties
Common Attribute Fetch Processing Properties
Profile Attribute Processing Properties
HTTP Session Binding Property
Session Attribute Processing Properties
Response Attribute Processing Properties
Bypass Principal List Property
Privileged Attribute Processing Properties
Service Resolver Property
Agent Username and Password Properties
Encryption Key Properties
Debug Service Properties
SSO Token Cookie Name Property
Naming Service URL Property
Session Client Properties
Encryption Provider Property
User Data Cache Update Time Property
Service Data Cache Update Time Property
SAML Service Properties
Authentication Service Properties
Policy Client Properties
Appendix C Troubleshooting a J2EE Agent Deployment in Policy Agent 2.2
J2EE Agent Troubleshooting Instructions
Appendix D Installation and Configuration of WebLogic Portal 10
Installation of the Agent on WebLogic Portal 10
Post-Installation Tasks for the Agent on WebLogic Portal 10
Portal: Common Post-Installation Steps for All J2EE Agents in Policy Agent 2.2
Configuring WebLogic Portal 10 Instance With Agent Classpath and Agent Java Options
To Configure WebLogic Portal 10 Instance With Agent Classpath and Agent Java Options
Portal: Configuring the Agent Authentication Provider on Agent for WebLogic Portal 10
To Configure the Agent Authentication Provider Specifically for WebLogic Portal 10
Portal: Adding a WebLogic Administrator to the Bypass List of Agent for WebLogic Server/Portal 10
Configuring the Agent Filter Modes Applicable to WebLogic Portal 10
To Configure Agent Filter Modes Applicable to WebLogic Portal 10
Setting Logout-Related Properties for the Sample Portal
To Set Logout-Related Properties for the Sample Portal
Verifying Users in the WebLogic Portal 10 User Repository
To Verify Users in the WebLogic Portal 10 User Repository
Portal: Installing the Agent Filter for the Deployed Application on Agent for WebLogic Server/Portal 10
To Install the Agent Filter for the Deployed Application Specifically for WebLogic Portal 10
Portal: Deploying the Agent Application
About Portal Users in WebLogic Portal 10 Administrator
Testing the Deployment of Policy Agent 2.2 on WebLogic Portal 10
To Test the Deployment of Policy Agent 2.2 on WebLogic Portal 10
© 2010, Oracle Corporation and/or its affiliates