policyInfo.type element
Reference information about the policyInfo.type element.
Description
Type of the policy.
Values
String
The following strings are suggested values:
- accountPolicy
- Account policy:
- Account expiry date
- Maximum account age
- Time of day (TOD) access
- acl
- Access control list.
- action
- Represents a permission.
- actionGroup
- Represents a collection of permissions.
- authzRule
- Authorization rule.
- federation
- A collection of groups or organizations that participate in a trust relationship.
- identityPolicy
- Specifies how identities, or user IDs, are generated when provisioning one or more resources.
- key
- A cryptographic key, either symmetric or asymmetric.
- loginPolicy
- Policy that controls login behavior:
- Login failure count
- Login disable time interval
- partner
- A group or organization that is participating in a federation.
- passwordPolicy
- A set of rules in which all passwords for one or more services must conform.
- policy
- Generic policy value to be used for policies that are not defined in the other values.
- pop
- Protected object policy (POP) controls.
- Audit level
- Additional attributes
- Quality of protection (QoP)
- provisioningPolicy
- Used to associate one or multiple groups of users with one or multiple entitlements. The group of users can be identified by organization or organization role. The entitlement is a construct to define a set of permissions, or privileges, on a managed provisioning resource.
- serviceSelectionPolicy
- Used in situations where the instance of a provisioning resource, on which the provisioning of an account is to take place, is determined dynamically based on account owner's attributes.
- spsModule
- A Single Sign-On (SSO) Protocol Service module (for example, the Liberty module).
- stsChain
- A grouping of Security Token Service (STS) module instances.
- stsModule
- Security Token Service (STS) module (for example, SAML module).
XPath
CommonBaseEvent/extendedDataElements[@name='policyInfo']/children
[@name='type']/values