Manualshelf

User guide

ManualsBrandsRed Hat ManualsComputer equipmentNETSCAPE ENTERPRISE SERVER 6.0 - NSAPI PROGRAMMER GUIDE
41424344454647484950
Chapter 1: Overview
1-36
Therefore, the accountant can access only the resources "employment regulations" and "settlement
information."
Multiple roles can be grouped as a role set. In the above example:
The role set "sales department" contains two roles, such as "overseas sales" and "domestic sales."
Because the resource "sales information" permits both "overseas sales" and "domestic sales" to
access the resource, the role set "sales department" can be set for the resource.
Because the resource "application for domestic sales" is intended to permit only the role "domestic
sales" to access the resource, only the role "domestic sales" should be assigned to the resource.
As described above, the concept of role can be used to implement authorization in a flexible manner.
Information Required for Authorization Using Roles
The following information required for the authorization using roles must be registered in the SSO
repository.
1. Role configuration
2. User information
3. Protection resource
The following shows examples of configurations in the SSO repository. Access control information is a
set of role configuration and protection resource information.