Attributes

Edit online

Attributes specify the context of a request that you want to be evaluated as part of an access decision. For example, an attribute might be information in a request, such as a user name, or information in an external source, such as a user's age in a user registry or an information type in a database.

Requests contain one or more of the following categories of attributes:

Action: Indicates the user action.
Environment: Indicates when and how the user is trying to access the resource.
Resource: Gives information about what the user is trying to access.
Subject: Indicates who is trying to access the resource.

When you author policies or risk profiles, you select attributes that you want to be evaluated. Commonly used attributes are predefined. You can also create your own to meet the needs of your environment.