[aznapi-pac-services] stanza
A PAC services plug-in gives authorization API applications the ability to move Verify Identity Access credentials back and forth between the native Verify Identity Access credentials format and an alternate format called privilege attribute certificate (PAC).
Each PAC services plug-in is a stand-alone module that is dynamically loaded into the authorization service.
Identity information can be obtained from a PAC. Applications can convert user credentials to PACs for use within other authorization domains. Applications can then pass the PACs to a server in another authorization domain and do an operation.
[aznapi-pac-services] stanza
of each of these configuration files provided by Verify Identity Access: - The configuration file for configured PAC services plug-ins for your resource managers
The aznAPI.conf configuration file is provided with Verify Identity Access as a sample file for creating your own resource manager configuration file. Developers of service plug-ins typically provide the standard functions. Before you implement service plug-ins, read and thoroughly understand the concepts in the Authorization C API Developer Reference.