Sun Microsystems 819468310 - page 9

■Anew policy condition AuthenticateToRealmCondition added, to enforce the user is

authenticatedto a specic realm.

■Anew policy condition LDAPFilterCondition is added, to enforce the user matches the

speciedldap lter.

■Supportfor one level wild card compare to facilitate protecting the contents of the directory

withoutprotecting sub-directory.

■Policiescan be created in subrealms without explicit referral policies from parent realm if

organizationalias referral is enabled in global policy conguration.

■AuthLevelConditioncan specify the realm name in addition to authentication level.

■AuthSchemeConditioncan specify the realm name in addition to authentication module

name.

ServiceManagement module

■Supportfor storing Service Management/Policy conguration in Active Directory

AccessManager SDK

■SupportAPIs for authenticating users to a default Identity Repository framework database

WebServices support

■LibertyID-WSF SOAP provider: Authentication provider that encapsulates the Liberty

ID-WSFSOAP binding as implemented by Access Manager. This consists of a client and

serviceprovider.

■HTTPlayer SSO provider: HttpServlet layer authentication provider that encapsulates

server-sideAccess Manager-based SSO

Installationmodule

■RepackagingAccess Manager as J2EE Application resulting in a single WAR le to become

webdeployable

■Supportfor 64-bit SJS Web Server 7.0 - to support the 64-bit JVM

Delegationmodule

■Supportfor grouping of delegation privileges

Upgrade

■Supportsupgrade to Access Manager 7.1 from the following versions: Access Manager 7.0

2005Q4,Access Manager 6.3 2005Q1, and Identity Server 6.2 2004Q2.

Logging

■Supportfor delegation in logging module - controlling which Identities are authorized to

writeto or read from the log les.

What’sNewin This Release

SunJavaSystem Access Manager 7.1 Release Notes 9

Contents

Main Page Contents Page Sun Java System Access Manager 7.1 Release Notes Revision History About Sun JavaSystem Access Manager 7.1 WhatsNew in This Release JavaES Monitoring Framework Integration WebService Security Single AccessManager WAR le deployment Enhancementsto Core Services Page Page DeprecationNotic ationand Announcement Hardwareand Sof tware Requirements Page Supported Browsers General CompatibilityInformation AMSDK intersystemincompatibility with Access Manager server Upgradenot suppor ted for AccessManager HPUX version AccessManager Legacy Mode JavaES Silent Installation Using a State File CongureNow InstallationOption in Graphical Mode CongureNow InstallationOption in Text-Based Mode CongureLater Installation Option AccessManager Policy Agents Known Issues and Limitations InstallationIssues UpgradeIssues CompatibilityIssues AccessManager Single Sign-On fails on Universal Web Client (6367058, 6429573) StackOverowErroroccurs on Web Server 7.0 running in 64bit mode (6449977) Incompatibilitiesexist in core authentication module for legacy mode (6305840) DelegatedAdministrator commadmin utility does not create a user (6294603) DelegatedAdministrator commadmin utility does not create an organization(6292104) CongurationIssues PasswordReset service reports notication errors when a password is changed(6455079) Page AccessManager Console Issues AddContainerDefaultTemplateRole attribute after data migration (4677779) CommandLine Issue OrganizationAdmin role is fails to create a new user with the amadmin commandline utility (6480776) SDK and Client Issues Clientsdo not get notications after the server restarts (6309161) SDKclients need to restart after service schema change (6292616) AuthenticationIssues Attributeuniqueness broken in the top-level organization for naming attributes(6204537) Session and SSO Issues Systemcreates invalid service host name when load balancer has SSL termination(6245660) UsingHttpSession with third-party web containers PolicyIssues Server Startup Issues Debugerror occurs on Access Manager startup (6309274, 6308646) AMSDK Issues Errordisplayed when performing AMIdentity.modifyService (6506448) Groupmembers don't show up in selected list (6459598) AccessManager Login URL Returns Message "No such Organization found"(6430874) Sub-orgcreation not possible from Access Manager when using amadmin(5001850) SSL Issue Theamcong script fails when SSL certicate is expired. (6488777) Samples Issue Clientsdksamples directory contains unwanted makele (6490071) Linux OS Issues JVMproblems occur when running Access Manager on Application Server(6223676) Windowsand HP-UX Issues AccessManager auto conguration failed when installing on zh_TW andes locales (6515043) HP-UXneeds gettext binary with AM while installing JES full stack (6497926) Federationand SAML Issues Federationfails when using Artifact prole (6324056) Globalization(g11n) Issues Administrationconsole components displayed in English in the zh locale(6470543) CurrentValue and New value are incorrectly displayedin the console (6476672) Policycondition date must be specied according to English custom (6390856) RemovingUTF-8 is not working in Client Detection (5028779) Multi-bytecharacters are displayed as question marks in log les (5014120) DocumentationIssues Documentthe roles and ltered roles support for LDAPv3 plug-in (6365196) Documentunused properties in the AMConfig.properties le (6344530) Documenthow to enable XML encryption (6275563) Documentation Updates Redistributable Files How toRepor t Problems and ProvideFeedback SunWelcomes YourComments AdditionalSun Resources AccessibilityFeatures for People With Disabilities RelatedThird-Party Web Sites