Configure the following fields on the
SiteMinder Authorization filter:
Name:
Enter an appropriate name for the filter.
Attributes:
If the end-user is successfully authorized, the attributes listed here
are returned to the Enterprise Gateway and stored in the
attribute.lookup.list message attribute. They can
then be used by subsequent filters in a policy to make decisions on their
values. Alternatively, they can be inserted into a SAML attribute assertion
so that the target service can apply some business logic based on their values
(for example, if role is CEO, escalate the request, and so on).
Select the Retrieve attributes from CA SiteMinder checkbox,
and click the Add button to specify an attribute to fetch
from SiteMinder.
If you select the Retrieve attributes from CA SiteMinder
checkbox, and do not specify attribute names to be retrieved, all attributes
returned by SiteMinder are added to the attribute.lookup.list
message attribute.
|