22.2 Configuring Shared Policy Components

You can configure shared policy components required for use in Access Manager authentication policies that protect resources and enable single sign-on.

See Also:

Understanding Single Sign-On with Access Manager

1. Confirm that the desired resource type is defined, as described in this chapter:

   • Managing Resource Types

2. Confirm that a host identifier definition named for the agent was created during agent registration, (or create one yourself), as described in:

   • Managing Host Identifiers

3. Gain comprehension about credential collection with Access Manager:

   • Understanding Authentication Methods and Credential Collectors

4. Learn about and use the authentication plug-ins that enable multi-step authentication:

   • Orchestrating Multi-Step Authentication with Plug-in Based Modules

   • Deploying and Managing Individual Plug-ins for Authentication

5. Create and manage authentication schemes that you can add to authentication policies, as described in:

   • Managing Authentication Schemes

   • Configuring Challenge Parameters for Encrypted Cookies

6. Set up your own global password policy for either the default embedded or optional detached credential collector (unless specified, tasks apply to both ECC and DCC, with minor changes noted in the discussion):

   • Accessing Password Policy Configuration Page

   • Managing Global Password Policy

   • Configuring Password Policy Authentication

   • DCC: Configuring 11g WebGate and Authentication Policy for DCC

   • Completing Password Policy Configuration

7. Proceed to Managing Policies to Protect Resources and Enable SSO to set up authentication policies.