Sun Microsystems 819468310 manual Service Management module

What’s New in This Release

■A new policy condition AuthenticateToRealmCondition added, to enforce the user is authenticated to a specific realm.

■A new policy condition LDAPFilterCondition is added, to enforce the user matches the specified ldap filter.

■Support for one level wild card compare to facilitate protecting the contents of the directory without protecting sub-directory.

■Policies can be created in subrealms without explicit referral policies from parent realm if organization alias referral is enabled in global policy configuration.

■AuthLevelCondition can specify the realm name in addition to authentication level.

■AuthSchemeCondition can specify the realm name in addition to authentication module name .

Service Management module

■Support for storing Service Management/Policy configuration in Active Directory

Access Manager SDK

■Support APIs for authenticating users to a default Identity Repository framework database

Web Services support

■Liberty ID-WSF SOAP provider: Authentication provider that encapsulates the Liberty ID-WSF SOAP binding as implemented by Access Manager. This consists of a client and service provider.

■HTTP layer SSO provider: HttpServlet layer authentication provider that encapsulates server-side Access Manager-based SSO

Installation module

■Repackaging Access Manager as J2EE Application resulting in a single WAR file to become web deployable

■Support for 64-bit SJS Web Server 7.0 - to support the 64-bit JVM

Delegation module

■Support for grouping of delegation privileges

Upgrade

■Supports upgrade to Access Manager 7.1 from the following versions: Access Manager 7.0 2005Q4, Access Manager 6.3 2005Q1, and Identity Server 6.2 2004Q2.

Logging

■Support for delegation in logging module - controlling which Identities are authorized to write to or read from the log files.