To Configure Policy for the Web Policy Agents

Use the OpenSSO Enterprise console to configure policy for the web policy agents. The policies you create here are used in To Verify the Web Policy Agents Load Balancer Configuration is Working Properly.

1. Access https://osso-1.example.com:1081/opensso/console from a web browser.

2. Log in to the OpenSSO Enterprise console as the administrator.

   Username

   amadmin

   Password

   ossoadmin

3. Under the Access Control tab, click / (Top Level Realm).

4. Click the Policies tab.

5. Click New Policy.

   The New Policy page is displayed.

6. On the New Policy page, enter URL Policy for LoadBalancer-4 in the Name field.

7. Click New under Rules.

   The New Rules page is displayed.

8. On the New Rules page, accept the default URL Policy Agent (with resource name) and click Next.

9. On the resulting page, provide the following information.

   Name:

   Rule for LoadBalancer-4.

   Resource Name:

   http://lb-4.example.com:90/*

   GET

   Mark this checkbox and verify that Allow is selected.

   POST

   Mark this checkbox and verify that Allow is selected.

10. Click Finish.

    The New Policy page is displayed again.

11. On the New Policy page, click New under Subjects.

    The New Subjects page is displayed.

12. On the New Subjects page, verify that Access Manager Identity Subject is selected and click Next.

13. On the resulting page, provide the following information.

    Name

    Subject for LoadBalancer-4.

    Filter

    From the drop-down list, select User and click Search. The search returns a list of available users.

    Available

    From the generated User list, select testuser1 and click Add. testuser1 is displayed in the Selected List.

14. Click Finish.

    The New Policy page is displayed again.

15. On the New Policy page, click OK.

    The completed policy is now included in the list of Policies.

16. Log out of the OpenSSO Enterprise console and close the browser.