Security concepts for a WebSEAL deployment
You must understand the security model concepts so that
you can successfully deploy WebSEAL and protect your resources. Basic
concepts include protected object space, access control lists, and
protected object policies.
Secure domain overview Verify Identity Access enforces security policies for authentication, authorization, and access control is called a secure domain .The role of the user registry and master authorization database in security Verify Identity Access secure domain.The protected object space and system resource Verify Identity Access secure domain. The system resource is the actual physical file or application.Access control lists and protected object policies Verify Identity Access system. These rules are applied to the object representations of the resources in the protected object space.Access control list policies Protected object policies Verify Identity Access and WebSEAL along with the yes ACL policy decision from the authorization service.Explicit and inherited policy Policy administration: The Web Portal Manager Verify Identity Access secure domain. Use the Web Portal Manager to manage the user registry, the master authorization policy database, and the Verify Identity Access servers.