830N/A<?
xml version="1.0" encoding="ISO-8859-1"?>
830N/A DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER. 830N/A Copyright (c) 2006 Sun Microsystems Inc. All Rights Reserved 919N/A The contents of this file are subject to the terms 919N/A of the Common Development and Distribution License 919N/A (the License). You may not use this file except in 919N/A compliance with the License. 919N/A You can obtain a copy of the License at 919N/A See the License for the specific language governing 919N/A permission and limitations under the License. 919N/A When distributing Covered Code, include this CDDL 919N/A Header Notice in each file and include the License file 919N/A If applicable, add the following below the CDDL Header, 919N/A with the fields enclosed by brackets [] replaced by 919N/A your own identifying information: 830N/A "Portions Copyrighted [year] [name of copyright owner]" 830N/A<!-- Portions Copyrighted 2014 ForgeRock, AS. --> 830N/A<!
DOCTYPE ServicesConfiguration 830N/A PUBLIC "=//iPlanet//Service Management Services (SMS) 1.0 DTD//EN" 830N/A <
Service name="iPlanetAMPolicyConfigService" version="1.0">
830N/A i18nFileName="amPolicyConfig" 830N/A i18nKey="iplanet-am-policy-config-service-description">
830N/A <
AttributeSchema name="serviceObjectClasses" 830N/A <
Value>iplanet-am-policy-config-service</
Value>
830N/A <
AttributeSchema name="iplanet-am-policy-config-resource-comparator" 830N/A validator="ResourceComparatorValidator" <
AttributeSchema name="iplanet-am-policy-config-continue-evaluation-on-deny-decision" <
BooleanTrueValue i18nKey="a100b">true</
BooleanTrueValue>
<
BooleanFalseValue i18nKey="a100c">false</
BooleanFalseValue>
<
AttributeSchema name="sun-am-policy-config-org-alias-mapped-resources-enabled" <
BooleanTrueValue i18nKey="a100b">true</
BooleanTrueValue>
<
BooleanFalseValue i18nKey="a100c">false</
BooleanFalseValue>
<
AttributeSchema name="sun-am-policy-config-advices-handleable-by-am" <
Value>AuthLevelConditionAdvice</
Value>
<
Value>AuthSchemeConditionAdvice</
Value>
<
Value>AuthenticateToRealmConditionAdvice</
Value>
<
Value>AuthenticateToServiceConditionAdvice</
Value>
<
AttributeSchema name="ResourceComparatorValidator" <
AttributeSchema name="openam-referrals-enabled" <
AttributeSchema name="iplanet-am-policy-config-ldap-server" <
Value>@UM_DIRECTORY_SERVER@:@UM_DIRECTORY_PORT@</
Value>
<
AttributeSchema name="iplanet-am-policy-config-ldap-base-dn" <
Value>@UM_NORMALIZED_ORGBASE@</
Value>
<
AttributeSchema name="iplanet-am-policy-config-ldap-users-base-dn" <
Value>@UM_NORMALIZED_ORGBASE@</
Value>
<
AttributeSchema name="iplanet-am-policy-config-is-roles-base-dn" <
Value>@UM_NORMALIZED_ORGBASE@</
Value>
<
AttributeSchema name="iplanet-am-policy-config-ldap-bind-dn" <
Value>@UM_DS_DIRMGRDN@</
Value>
<
AttributeSchema name="iplanet-am-policy-config-ldap-bind-password" <
AttributeSchema name="iplanet-am-policy-config-ldap-organizations-search-filter" <
Value>(objectclass=@ORG_OBJECT_CLASS@)</
Value>
<
AttributeSchema name="iplanet-am-policy-config-ldap-organizations-search-scope" <
ChoiceValue i18nKey="a126">SCOPE_BASE</
ChoiceValue>
<
ChoiceValue i18nKey="a127">SCOPE_ONE</
ChoiceValue>
<
ChoiceValue i18nKey="a128">SCOPE_SUB</
ChoiceValue>
<
AttributeSchema name="iplanet-am-policy-config-ldap-groups-search-filter" <
Value>(objectclass=groupOfUniqueNames)</
Value>
<
AttributeSchema name="iplanet-am-policy-config-ldap-groups-search-scope" <
ChoiceValue i18nKey="a126">SCOPE_BASE</
ChoiceValue>
<
ChoiceValue i18nKey="a127">SCOPE_ONE</
ChoiceValue>
<
ChoiceValue i18nKey="a128">SCOPE_SUB</
ChoiceValue>
<
AttributeSchema name="iplanet-am-policy-config-ldap-users-search-filter" <
Value>(objectclass=@USER_OBJECT_CLASS@)</
Value>
<
AttributeSchema name="iplanet-am-policy-config-ldap-users-search-scope" <
ChoiceValue i18nKey="a126">SCOPE_BASE</
ChoiceValue>
<
ChoiceValue i18nKey="a127">SCOPE_ONE</
ChoiceValue>
<
ChoiceValue i18nKey="a128">SCOPE_SUB</
ChoiceValue>
<
AttributeSchema name="iplanet-am-policy-config-ldap-roles-search-filter" <
Value>(&(objectclass=ldapsubentry)(objectclass=nsroledefinition))</
Value>
<
AttributeSchema name="iplanet-am-policy-config-ldap-roles-search-scope" <
ChoiceValue i18nKey="a126">SCOPE_BASE</
ChoiceValue>
<
ChoiceValue i18nKey="a127">SCOPE_ONE</
ChoiceValue>
<
ChoiceValue i18nKey="a128">SCOPE_SUB</
ChoiceValue>
<
AttributeSchema name="iplanet-am-policy-config-is-roles-search-scope" <
ChoiceValue i18nKey="a126">SCOPE_BASE</
ChoiceValue>
<
ChoiceValue i18nKey="a127">SCOPE_ONE</
ChoiceValue>
<
ChoiceValue i18nKey="a128">SCOPE_SUB</
ChoiceValue>
<
AttributeSchema name="iplanet-am-policy-config-ldap-organizations-search-attribute" <
Value>@ORG_NAMING_ATTR@</
Value>
<
AttributeSchema name="iplanet-am-policy-config-ldap-groups-search-attribute" <
AttributeSchema name="iplanet-am-policy-config-ldap-users-search-attribute" <
Value>@USER_NAMING_ATTR@</
Value>
<
AttributeSchema name="iplanet-am-policy-config-ldap-roles-search-attribute" <
AttributeSchema name="iplanet-am-policy-config-search-limit" <
AttributeSchema name="iplanet-am-policy-config-search-timeout" <
AttributeSchema name="iplanet-am-policy-config-ldap-ssl-enabled" <
AttributeSchema name="iplanet-am-policy-config-connection_pool_min_size" <
AttributeSchema name="iplanet-am-policy-config-connection_pool_max_size" <
AttributeSchema name="iplanet-am-policy-selected-subjects" <
ChoiceValue i18nKey="a144">WebServicesClients</
ChoiceValue>
<
ChoiceValue i18nKey="a129">Organization</
ChoiceValue>
<
ChoiceValue i18nKey="a130">IdentityServerRoles</
ChoiceValue>
<
ChoiceValue i18nKey="a131">LDAPGroups</
ChoiceValue>
<
ChoiceValue i18nKey="a132">LDAPRoles</
ChoiceValue>
<
ChoiceValue i18nKey="a133">LDAPUsers</
ChoiceValue>
<
ChoiceValue i18nKey="a143">AuthenticatedUsers</
ChoiceValue>
<
ChoiceValue i18nKey="a145">AMIdentitySubject</
ChoiceValue>
<
Value>WebServicesClients</
Value>
<
Value>AuthenticatedUsers</
Value>
<
Value>AMIdentitySubject</
Value>
<
AttributeSchema name="iplanet-am-policy-selected-conditions" <
ChoiceValue i18nKey="a134">AuthLevelCondition</
ChoiceValue>
<
ChoiceValue i18nKey="a134a">LEAuthLevelCondition</
ChoiceValue>
<
ChoiceValue i18nKey="a135">AuthSchemeCondition</
ChoiceValue>
<
ChoiceValue i18nKey="a135a">AuthenticateToRealmCondition</
ChoiceValue>
<
ChoiceValue i18nKey="a135b">AuthenticateToServiceCondition</
ChoiceValue>
<
ChoiceValue i18nKey="a136">IPCondition</
ChoiceValue>
<
ChoiceValue i18nKey="a137">SimpleTimeCondition</
ChoiceValue>
<
ChoiceValue i18nKey="a141">SessionCondition</
ChoiceValue>
<
ChoiceValue i18nKey="a141a">SessionPropertyCondition</
ChoiceValue>
<
ChoiceValue i18nKey="a141fc">LDAPFilterCondition</
ChoiceValue>
<
ChoiceValue i18nKey="a141amc">AMIdentityMembershipCondition</
ChoiceValue>
<
ChoiceValue i18nKey="a151">ResourceEnvIPCondition</
ChoiceValue>
<
Value>AuthLevelCondition</
Value>
<
Value>LEAuthLevelCondition</
Value>
<
Value>AuthSchemeCondition</
Value>
<
Value>AuthenticateToRealmCondition</
Value>
<
Value>AuthenticateToServiceCondition</
Value>
<
Value>SimpleTimeCondition</
Value>
<
Value>IPCondition</
Value>
<
Value>SessionCondition</
Value>
<
Value>SessionPropertyCondition</
Value>
<
Value>LDAPFilterCondition</
Value>
<
Value>AMIdentityMembershipCondition</
Value>
<
Value>ResourceEnvIPCondition</
Value>
<
AttributeSchema name="sun-am-policy-selected-responseproviders" <
ChoiceValue i18nKey="a201">IDRepoResponseProvider</
ChoiceValue>
<
Value>IDRepoResponseProvider</
Value>
<
AttributeSchema name="sun-am-policy-dynamic-response-attributes" <
AttributeSchema name="iplanet-am-policy-selected-referrals" <
ChoiceValue i18nKey="a138">PeerOrgReferral</
ChoiceValue>
<
ChoiceValue i18nKey="a139">SubOrgReferral</
ChoiceValue>
<
Value>PeerOrgReferral</
Value>
<
Value>SubOrgReferral</
Value>
<
AttributeSchema name="iplanet-am-policy-config-subjects-result-ttl" <
AttributeSchema name="iplanet-am-policy-config-user-alias-enabled" <
OrganizationConfiguration name="/">
<
Attribute name="iplanet-am-policy-config-ldap-bind-dn"/>
<
Value>@UM_DS_DIRMGRDN@</
Value>
<
Attribute name="iplanet-am-policy-config-ldap-bind-password"/>
<
Value>@UM_DS_DIRMGRPASSWD@</
Value>
</
OrganizationConfiguration>