2N/A<?
xml version="1.0" encoding="UTF-8"?>
2N/A DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER. 2N/A Copyright (c) 2009 Sun Microsystems Inc. All Rights Reserved 2N/A The contents of this file are subject to the terms 2N/A of the Common Development and Distribution License 2N/A (the License). You may not use this file except in 2N/A compliance with the License. 2N/A You can obtain a copy of the License at 2N/A See the License for the specific language governing 2N/A permission and limitations under the License. 2N/A When distributing Covered Code, include this CDDL 2N/A Header Notice in each file and include the License file 2N/A If applicable, add the following below the CDDL Header, 2N/A with the fields enclosed by brackets [] replaced by 2N/A your own identifying information: 2N/A "Portions Copyrighted [year] [name of copyright owner]" 2N/A Portions copyright 2011-2015 ForgeRock AS. 2N/A<!
DOCTYPE ServicesConfiguration 2N/A PUBLIC "=//iPlanet//Service Management Services (SMS) 1.0 DTD//EN" 2N/A<
ServicesConfiguration>
2N/A <
Service name="sunEntitlementService" version="1.0">
2N/A <
Schema i18nFileName="" revisionNumber="20">
2N/A <
AttributeSchema name="usenewconsole" 2N/A <
AttributeSchema name="migratedtoentitlementservice" 2N/A <
AttributeSchema name="xacml-privilege-enabled" 2N/A <
Value>false</
Value>
2N/A <
AttributeSchema name="evalThreadSize" 2N/A syntax="number_range" 2N/A rangeStart="0" rangeEnd="200" 2N/A <
AttributeSchema name="searchThreadSize" 2N/A syntax="number_range" 2N/A rangeStart="0" rangeEnd="200" 2N/A <
AttributeSchema name="policyCacheSize" 2N/A syntax="number_range" 2N/A rangeStart="0" rangeEnd="2147483647" 2N/A <
Value>100000</
Value>
2N/A <
AttributeSchema name="indexCacheSize" 2N/A syntax="number_range" 2N/A rangeStart="0" rangeEnd="2147483647" 2N/A <
Value>100000</
Value>
2N/A <!-- entitlement notification, Connection timeout in millisec, 2N/A <
AttributeSchema name="entitlement-notifier-conn-timeout" 2N/A syntax="number_range" 2N/A rangeStart="0" rangeEnd="300000" <
AttributeSchema name="entitlement-notifier-retries" rangeStart="0" rangeEnd="50" <!-- duration between retries in millisec, max 5 mins --> <
AttributeSchema name="entitlement-notifier-duration-between-retries" rangeStart="0" rangeEnd="300000" <!-- Privilege change notification Connection timeout in millisec, max 5 mins --> <
AttributeSchema name="privilege-notifier-conn-timeout" rangeStart="0" rangeEnd="300000" <
AttributeSchema name="privilege-notifier-retries" rangeStart="0" rangeEnd="50" <!-- duration between retries in millisec, max 5 mins --> <
AttributeSchema name="privilege-notifier-duration-between-retries" rangeStart="0" rangeEnd="300000" <
AttributeSchema name="privilege-notifier-threadpool-size" rangeStart="0" rangeEnd="20" <
AttributeSchema name="network-monitor-enabled" <
AttributeSchema name="listeners" <
SubSchema name="applicationTypes" inheritance="multiple">
<
SubSchema name="applicationType" inheritance="multiple">
<
AttributeSchema name="applicationClassName" <
AttributeSchema name="actions" <
AttributeSchema name="searchIndexImpl" <
AttributeSchema name="saveIndexImpl" <
AttributeSchema name="resourceComparator" <
AttributeSchema name="nonBooleanActionValues" <
SubSchema name="resourceTypes" inheritance="multiple">
<
SubSchema name="resourceType" inheritance="multiple">
<
AttributeSchema name="name" <
AttributeSchema name="description" <
AttributeSchema name="patterns" <
AttributeSchema name="actions" <
AttributeSchema name="createdBy" <
AttributeSchema name="creationDate" <
AttributeSchema name="lastModifiedBy" <
AttributeSchema name="lastModifiedDate" <
SubSchema name="applications" inheritance="multiple">
<
SubSchema name="application" inheritance="multiple">
<
AttributeSchema name="applicationType" <
AttributeSchema name="description" <
AttributeSchema name="resourceTypeUuids" <
AttributeSchema name="subjects" <
AttributeSchema name="conditions" <
AttributeSchema name="entitlementCombiner" <
AttributeSchema name="searchIndexImpl" <
AttributeSchema name="saveIndexImpl" <
AttributeSchema name="resourceComparator" <
AttributeSchema name="subjectAttributeNames" <
AttributeSchema name="meta" <
SubSchema name="subjectAttributesCollectors" inheritance="multiple">
<
SubSchema name="OpenSSOSubjectAttributesCollector" inheritance="multiple">
<
AttributeSchema name="class" <
AttributeSchema name="groupMembershipSearchIndexEnabled" <
SubConfiguration name="applicationTypes" id="applicationTypes">
<
SubConfiguration name="iPlanetAMWebAgentService" <
Attribute name="actions" />
<
Value>DELETE=true</
Value>
<
Value>OPTIONS=true</
Value>
<
Value>PATCH=true</
Value>
<
Attribute name="searchIndexImpl" />
<
Attribute name="saveIndexImpl" />
<
Attribute name="resourceComparator" />
<
SubConfiguration name="crestPolicyService" id="applicationType">
<
Attribute name="actions" />
<
Value>CREATE=true</
Value>
<
Value>UPDATE=true</
Value>
<
Value>DELETE=true</
Value>
<
Value>PATCH=true</
Value>
<
Value>ACTION=true</
Value>
<
Value>QUERY=true</
Value>
<
Attribute name="searchIndexImpl" />
<
Attribute name="saveIndexImpl" />
<
Attribute name="resourceComparator" />
<
SubConfiguration name="sunIdentityServerDiscoveryService" <
Attribute name="actions" />
<
Value>LOOKUP=true</
Value>
<
Value>UPDATE=true</
Value>
<
Attribute name="searchIndexImpl" />
<
Attribute name="saveIndexImpl" />
<
Attribute name="resourceComparator" />
<
SubConfiguration name="sunIdentityServerLibertyPPService" <
Attribute name="actions" />
<
Value>QUERY_allow=true</
Value>
<
Value>QUERY_deny=false</
Value>
<
Value>QUERY_interactForValue=false</
Value>
<
Value>QUERY_interactForConsent=false</
Value>
<
Value>MODIFY_allow=true</
Value>
<
Value>MODIFY_deny=false</
Value>
<
Value>MODIFY_interactForValue=false</
Value>
<
Value>MODIFY_interactForConsent=false</
Value>
<
Attribute name="nonBooleanActionValues" />
<
Value>QUERY=deny,allow,interactForValue,interactForConsent</
Value>
<
Value>MODIFY=deny,allow,interactForValue,interactForConsent</
Value>
<
Attribute name="searchIndexImpl" />
<
Attribute name="saveIndexImpl" />
<
Attribute name="resourceComparator" />
<
SubConfiguration name="sunAMDelegationService" <
Attribute name="actions" />
<
Value>MODIFY=true</
Value>
<
Value>DELEGATE=true</
Value>
<
Attribute name="searchIndexImpl" />
<
Attribute name="saveIndexImpl" />
<
Attribute name="resourceComparator" />
<
SubConfiguration name="openProvisioning" <
Attribute name="actions" />
<
Value>CREATE=true</
Value>
<
Value>UPDATE=true</
Value>
<
Value>DELETE=true</
Value>
<
Attribute name="searchIndexImpl" />
<
Attribute name="saveIndexImpl" />
<
Attribute name="resourceComparator" />
<
SubConfiguration name="banking" <
Attribute name="actions" />
<
Value>TRANSFER=true</
Value>
<
Attribute name="searchIndexImpl" />
<
Attribute name="saveIndexImpl" />
<
Attribute name="resourceComparator" />
<
OrganizationConfiguration name="/">
<
SubConfiguration name="registeredResourceTypes" id="resourceTypes">
<
SubConfiguration name="76656a38-5f8e-401b-83aa-4ccb74ce88d2" id="resourceType">
<
Attribute name="name" />
<
Attribute name="description" />
<
Value>The built-in URL Resource Type available to OpenAM Policies.</
Value>
<
Attribute name="patterns" />
<
Value>*://*:*/*?*</
Value>
<
Attribute name="actions" />
<
Value>DELETE=true</
Value>
<
Value>OPTIONS=true</
Value>
<
Value>PATCH=true</
Value>
<
Attribute name="createdBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="creationDate" />
<
Value>1422892465848</
Value>
<
Attribute name="lastModifiedBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="lastModifiedDate" />
<
Value>1422892465848</
Value>
<
SubConfiguration name="6a90eabe-9638-4333-b688-3223aec7f58a" id="resourceType">
<
Attribute name="name" />
<
Attribute name="description" />
<
Value>The built-in CREST Resource Type available to OpenAM Policies.</
Value>
<
Attribute name="patterns" />
<
Attribute name="actions" />
<
Value>CREATE=true</
Value>
<
Value>UPDATE=true</
Value>
<
Value>DELETE=true</
Value>
<
Value>PATCH=true</
Value>
<
Value>ACTION=true</
Value>
<
Value>QUERY=true</
Value>
<
Attribute name="createdBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="creationDate" />
<
Value>1422892465848</
Value>
<
Attribute name="lastModifiedBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="lastModifiedDate" />
<
Value>1422892465848</
Value>
<
SubConfiguration name="1491322b-5c50-4133-8c40-1646e1170cbb" id="resourceType">
<
Attribute name="name" />
<
Value>Discovery Service</
Value>
<
Attribute name="description" />
<
Value>The built-in discovery Resource Type available to OpenAM Policies.</
Value>
<
Attribute name="patterns" />
<
Attribute name="actions" />
<
Value>LOOKUP=true</
Value>
<
Value>UPDATE=true</
Value>
<
Attribute name="createdBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="creationDate" />
<
Value>1422892465848</
Value>
<
Attribute name="lastModifiedBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="lastModifiedDate" />
<
Value>1422892465848</
Value>
<
SubConfiguration name="09496ad8-26e3-4002-b90e-24facc2e78c1" id="resourceType">
<
Attribute name="name" />
<
Value>Liberty Service</
Value>
<
Attribute name="description" />
<
Value>The built-in liberty Resource Type available to OpenAM Policies.</
Value>
<
Attribute name="patterns" />
<
Value>*://*:*/*?*</
Value>
<
Attribute name="actions" />
<
Value>QUERY_allow=true</
Value>
<
Value>QUERY_deny=false</
Value>
<
Value>QUERY_interactForValue=false</
Value>
<
Value>QUERY_interactForConsent=false</
Value>
<
Value>MODIFY_allow=true</
Value>
<
Value>MODIFY_deny=false</
Value>
<
Value>MODIFY_interactForValue=false</
Value>
<
Value>MODIFY_interactForConsent=false</
Value>
<
Attribute name="createdBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="creationDate" />
<
Value>1422892465848</
Value>
<
Attribute name="lastModifiedBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="lastModifiedDate" />
<
Value>1422892465848</
Value>
<
SubConfiguration name="20a13582-1f32-4f83-905f-f71ff4e2e00d" id="resourceType">
<
Attribute name="name" />
<
Value>Delegation Service</
Value>
<
Attribute name="description" />
<
Value>The built-in delegation Resource Type available to OpenAM Policies.</
Value>
<
Attribute name="patterns" />
<
Value>sms://*:*/*</
Value>
<
Value>sms://*:*/*?*</
Value>
<
Attribute name="actions" />
<
Value>MODIFY=true</
Value>
<
Value>DELEGATE=true</
Value>
<
Attribute name="createdBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="creationDate" />
<
Value>1422892465848</
Value>
<
Attribute name="lastModifiedBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="lastModifiedDate" />
<
Value>1422892465848</
Value>
<
SubConfiguration name="b5ceba86-4346-4cf5-a5f2-1d2884d1a025" id="resourceType">
<
Attribute name="name" />
<
Value>Provisioning Service</
Value>
<
Attribute name="description" />
<
Value>The built-in provisioning Resource Type available to OpenAM Policies.</
Value>
<
Attribute name="patterns" />
<
Attribute name="actions" />
<
Value>CREATE=true</
Value>
<
Value>UPDATE=true</
Value>
<
Value>DELETE=true</
Value>
<
Attribute name="createdBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="creationDate" />
<
Value>1422892465848</
Value>
<
Attribute name="lastModifiedBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="lastModifiedDate" />
<
Value>1422892465848</
Value>
<
SubConfiguration name="13b27ffe-0415-4751-821c-b81675c7acc8" id="resourceType">
<
Attribute name="name" />
<
Attribute name="description" />
<
Value>The built-in paycheck Resource Type available to OpenAM Policies.</
Value>
<
Attribute name="patterns" />
<
Attribute name="actions" />
<
Value>DELETE=true</
Value>
<
Value>OPTIONS=true</
Value>
<
Value>PATCH=true</
Value>
<
Attribute name="createdBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="creationDate" />
<
Value>1422892465848</
Value>
<
Attribute name="lastModifiedBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="lastModifiedDate" />
<
Value>1422892465848</
Value>
<
SubConfiguration name="504fe694-f1e3-4fdf-8d69-fcf2a4fce06b" id="resourceType">
<
Attribute name="name" />
<
Attribute name="description" />
<
Value>The built-in IM Resource Type available to OpenAM Policies.</
Value>
<
Attribute name="patterns" />
<
Attribute name="actions" />
<
Value>DELETE=true</
Value>
<
Value>OPTIONS=true</
Value>
<
Value>PATCH=true</
Value>
<
Attribute name="createdBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="creationDate" />
<
Value>1422892465848</
Value>
<
Attribute name="lastModifiedBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="lastModifiedDate" />
<
Value>1422892465848</
Value>
<
SubConfiguration name="74e62178-ab00-45cb-94e5-29dedbd617a5" id="resourceType">
<
Attribute name="name" />
<
Attribute name="description" />
<
Value>The built-in calendar Resource Type available to OpenAM Policies.</
Value>
<
Attribute name="patterns" />
<
Attribute name="actions" />
<
Value>DELETE=true</
Value>
<
Value>OPTIONS=true</
Value>
<
Value>PATCH=true</
Value>
<
Attribute name="createdBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="creationDate" />
<
Value>1422892465848</
Value>
<
Attribute name="lastModifiedBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="lastModifiedDate" />
<
Value>1422892465848</
Value>
<
SubConfiguration name="398207e2-a643-4f8c-b46b-42da0f7dc63f" id="resourceType">
<
Attribute name="name" />
<
Attribute name="description" />
<
Value>The built-in bank Resource Type available to OpenAM Policies.</
Value>
<
Attribute name="patterns" />
<
Value>*://*:*/*?*</
Value>
<
Attribute name="actions" />
<
Value>TRANSFER=true</
Value>
<
Attribute name="createdBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="creationDate" />
<
Value>1422892465848</
Value>
<
Attribute name="lastModifiedBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="lastModifiedDate" />
<
Value>1422892465848</
Value>
<
SubConfiguration name="93a563eb-1f43-4cca-89f3-9a85e83401b9" id="resourceType">
<
Attribute name="name" />
<
Attribute name="description" />
<
Value>The built-in Button Resource Type available to OpenAM Policies.</
Value>
<
Attribute name="patterns" />
<
Value>btn://*:*/*</
Value>
<
Value>btn://*:*/*?*</
Value>
<
Attribute name="actions" />
<
Value>VISIBLE=true</
Value>
<
Value>SELECTED=true</
Value>
<
Attribute name="createdBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="creationDate" />
<
Value>1422892465848</
Value>
<
Attribute name="lastModifiedBy" />
<
Value>id=dsameuser,ou=user,dc=openam,dc=forgerock,dc=org</
Value>
<
Attribute name="lastModifiedDate" />
<
Value>1422892465848</
Value>
<
SubConfiguration name="registeredApplications" <
SubConfiguration name="iPlanetAMWebAgentService" <
Attribute name="description" />
<
Value>The built-in Application used by OpenAM Policy Agents.</
Value>
<
Attribute name="applicationType" />
<
Value>iPlanetAMWebAgentService</
Value>
<
Attribute name="resourceTypeUuids"/>
<
Value>76656a38-5f8e-401b-83aa-4ccb74ce88d2</
Value>
<
Attribute name="subjects" />
<
Value>AuthenticatedUsers</
Value>
<
Attribute name="conditions" />
<
Value>AMIdentityMembership</
Value>
<
Value>LEAuthLevel</
Value>
<
Value>AuthScheme</
Value>
<
Value>AuthenticateToRealm</
Value>
<
Value>AuthenticateToService</
Value>
<
Value>LDAPFilter</
Value>
<
Value>OAuth2Scope</
Value>
<
Value>ResourceEnvIP</
Value>
<
Value>SessionProperty</
Value>
<
Value>SimpleTime</
Value>
<
Attribute name="entitlementCombiner" />
<
Value>DenyOverride</
Value>
<
SubConfiguration name="crestPolicyService" id="application">
<
Attribute name="applicationType" />
<
Value>crestPolicyService</
Value>
<
Attribute name="resourceTypeUuids" />
<
Value>6a90eabe-9638-4333-b688-3223aec7f58a</
Value>
<
Attribute name="subjects" />
<
Value>AuthenticatedUsers</
Value>
<
Attribute name="conditions" />
<
Value>AMIdentityMembership</
Value>
<
Value>LEAuthLevel</
Value>
<
Value>AuthScheme</
Value>
<
Value>AuthenticateToRealm</
Value>
<
Value>AuthenticateToService</
Value>
<
Value>LDAPFilter</
Value>
<
Value>OAuth2Scope</
Value>
<
Value>ResourceEnvIP</
Value>
<
Value>SessionProperty</
Value>
<
Value>SimpleTime</
Value>
<
Attribute name="entitlementCombiner" />
<
Value>DenyOverride</
Value>
<
SubConfiguration name="sunIdentityServerDiscoveryService" <
Attribute name="applicationType" />
<
Value>sunIdentityServerDiscoveryService</
Value>
<
Attribute name="resourceTypeUuids" />
<
Value>1491322b-5c50-4133-8c40-1646e1170cbb</
Value>
<
Attribute name="subjects" />
<
Value>AuthenticatedUsers</
Value>
<
Attribute name="conditions" />
<
Value>AMIdentityMembership</
Value>
<
Value>LEAuthLevel</
Value>
<
Value>AuthScheme</
Value>
<
Value>AuthenticateToRealm</
Value>
<
Value>AuthenticateToService</
Value>
<
Value>LDAPFilter</
Value>
<
Value>OAuth2Scope</
Value>
<
Value>ResourceEnvIP</
Value>
<
Value>SessionProperty</
Value>
<
Value>SimpleTime</
Value>
<
Attribute name="entitlementCombiner" />
<
Value>DenyOverride</
Value>
<
SubConfiguration name="sunIdentityServerLibertyPPService" <
Attribute name="applicationType" />
<
Value>sunIdentityServerLibertyPPService</
Value>
<
Attribute name="resourceTypeUuids" />
<
Value>09496ad8-26e3-4002-b90e-24facc2e78c1</
Value>
<
Attribute name="subjects" />
<
Value>AuthenticatedUsers</
Value>
<
Attribute name="conditions" />
<
Value>AMIdentityMembership</
Value>
<
Value>LEAuthLevel</
Value>
<
Value>AuthScheme</
Value>
<
Value>AuthenticateToRealm</
Value>
<
Value>AuthenticateToService</
Value>
<
Value>LDAPFilter</
Value>
<
Value>OAuth2Scope</
Value>
<
Value>ResourceEnvIP</
Value>
<
Value>SessionProperty</
Value>
<
Value>SimpleTime</
Value>
<
Attribute name="entitlementCombiner" />
<
Value>DenyOverride</
Value>
<
SubConfiguration name="sunAMDelegationService" <
Attribute name="applicationType" />
<
Value>sunAMDelegationService</
Value>
<
Attribute name="resourceTypeUuids" />
<
Value>20a13582-1f32-4f83-905f-f71ff4e2e00d</
Value>
<
Attribute name="subjects" />
<
Value>AuthenticatedUsers</
Value>
<
Attribute name="entitlementCombiner" />
<
Value>DenyOverride</
Value>
<
SubConfiguration name="openProvisioning" <
Attribute name="applicationType" />
<
Value>openProvisioning</
Value>
<
Attribute name="resourceTypeUuids" />
<
Value>b5ceba86-4346-4cf5-a5f2-1d2884d1a025</
Value>
<
Attribute name="entitlementCombiner" />
<
Value>DenyOverride</
Value>
<
SubConfiguration name="paycheck" <
Attribute name="applicationType" />
<
Value>iPlanetAMWebAgentService</
Value>
<
Attribute name="resourceTypeUuids" />
<
Value>13b27ffe-0415-4751-821c-b81675c7acc8</
Value>
<
Attribute name="subjects" />
<
Value>AuthenticatedUsers</
Value>
<
Attribute name="conditions" />
<
Value>AMIdentityMembership</
Value>
<
Value>LEAuthLevel</
Value>
<
Value>AuthScheme</
Value>
<
Value>AuthenticateToRealm</
Value>
<
Value>AuthenticateToService</
Value>
<
Value>LDAPFilter</
Value>
<
Value>OAuth2Scope</
Value>
<
Value>ResourceEnvIP</
Value>
<
Value>SessionProperty</
Value>
<
Value>SimpleTime</
Value>
<
Attribute name="entitlementCombiner" />
<
Value>DenyOverride</
Value>
<
SubConfiguration name="calendar" <
Attribute name="applicationType" />
<
Value>iPlanetAMWebAgentService</
Value>
<
Attribute name="resourceTypeUuids" />
<
Value>74e62178-ab00-45cb-94e5-29dedbd617a5</
Value>
<
Attribute name="subjects" />
<
Value>AuthenticatedUsers</
Value>
<
Attribute name="conditions" />
<
Value>AMIdentityMembership</
Value>
<
Value>LEAuthLevel</
Value>
<
Value>AuthScheme</
Value>
<
Value>AuthenticateToRealm</
Value>
<
Value>AuthenticateToService</
Value>
<
Value>LDAPFilter</
Value>
<
Value>OAuth2Scope</
Value>
<
Value>ResourceEnvIP</
Value>
<
Value>SessionProperty</
Value>
<
Value>SimpleTime</
Value>
<
Attribute name="entitlementCombiner" />
<
Value>DenyOverride</
Value>
<
SubConfiguration name="im" <
Attribute name="applicationType" />
<
Value>iPlanetAMWebAgentService</
Value>
<
Attribute name="resourceTypeUuids" />
<
Value>504fe694-f1e3-4fdf-8d69-fcf2a4fce06b</
Value>
<
Attribute name="subjects" />
<
Value>AuthenticatedUsers</
Value>
<
Attribute name="conditions" />
<
Value>AMIdentityMembership</
Value>
<
Value>LEAuthLevel</
Value>
<
Value>AuthScheme</
Value>
<
Value>AuthenticateToRealm</
Value>
<
Value>AuthenticateToService</
Value>
<
Value>LDAPFilter</
Value>
<
Value>OAuth2Scope</
Value>
<
Value>ResourceEnvIP</
Value>
<
Value>SessionProperty</
Value>
<
Value>SimpleTime</
Value>
<
Attribute name="entitlementCombiner" />
<
Value>DenyOverride</
Value>
<
SubConfiguration name="sunBank" <
Attribute name="applicationType" />
<
Attribute name="resourceTypeUuids" />
<
Value>398207e2-a643-4f8c-b46b-42da0f7dc63f</
Value>
<
Attribute name="subjects" />
<
Value>AuthenticatedUsers</
Value>
<
Attribute name="conditions" />
<
Value>NumericAttribute</
Value>
<
Value>AMIdentityMembership</
Value>
<
Value>LEAuthLevel</
Value>
<
Value>AuthScheme</
Value>
<
Value>AuthenticateToRealm</
Value>
<
Value>AuthenticateToService</
Value>
<
Value>LDAPFilter</
Value>
<
Value>OAuth2Scope</
Value>
<
Value>ResourceEnvIP</
Value>
<
Value>SessionProperty</
Value>
<
Value>SimpleTime</
Value>
<
Attribute name="entitlementCombiner" />
<
Value>DenyOverride</
Value>
<
SubConfiguration name="subjectAttributesCollectors" id="subjectAttributesCollectors">
<
SubConfiguration name="OpenSSO" id="OpenSSOSubjectAttributesCollector">
<
Attribute name="class" />
<
Attribute name="groupMembershipSearchIndexEnabled" />
</
OrganizationConfiguration>