Installation guide

ManualsBrandsRed Hat ManualsComputer equipmentNETSCAPE DIRECTORY SERVER 6.02 - DEPLOYMENT

141

142

143

144

145

146

147

148

149

150

Configuring the Agent

142 Sun ONE Identity Server Policy Agents 2.1 • Web Policy Agents Guide • April 2005

Policy Agent for Oracle Application Server 10g

You can configure the agent for Oracle Application Server 10g by modifying the

following properties in the file

AMAgent.properties

fetchHeaders

Set this value to

true

so that additional policy response attributes can be

introduced into the HTTP headers.

com.sun.am.policy.am.fetchHeaders=true

headerAttributes

This value represents what policy attributes should be added to the HTTP header

(if the value of

fetchHeaders

true

). Set this value to

uid|identity-user

so that

the user id of Sun ONE Identity Server is passed to Oracle SSO Server via HTTP

headers.

com.sun.am.policy.am.headerAttributes=uid|identity-user

do_sso_only

Set this value to

true

so that the agent will just enforce user authentication without

enforcing policies (authorization). In this integration, Oracle SSO Server handles

authorization.

com.sun.am.policy.agents.do_sso_only = true

fqdnDefault

This value is set by the agent installation program to thehostname wherethe agent

is installed. Make sure thatthis valueis a fully qualified domainname. Itshould be

set to

hostname.domain

. For example, if the machine is called agent1 and the domain is

example.com

, this property should be set as follows:

com.sun.am.policy.agents.fqdnDefault = agent1.example.com

reverse_the_meaning_of_notenforcedList

Set this value to

true

so that the

notenforcedList

becomes the enforced list.

com.sun.am.policy.agents.reverse_the_meaning_of_notenforcedList = true