amDelegation.xml revision ba07e74da87b2caf40d3397e50523632daeb4cac
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync<?xml version="1.0" encoding="ISO-8859-1"?>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync<!--
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync Copyright (c) 2006 Sun Microsystems Inc. All Rights Reserved
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync The contents of this file are subject to the terms
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync of the Common Development and Distribution License
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync (the License). You may not use this file except in
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync compliance with the License.
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync You can obtain a copy of the License at
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync https://opensso.dev.java.net/public/CDDLv1.0.html or
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync opensso/legal/CDDLv1.0.txt
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync See the License for the specific language governing
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync permission and limitations under the License.
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync When distributing Covered Code, include this CDDL
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync Header Notice in each file and include the License file
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync at opensso/legal/CDDLv1.0.txt.
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync If applicable, add the following below the CDDL Header,
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync with the fields enclosed by brackets [] replaced by
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync your own identifying information:
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync "Portions Copyrighted [year] [name of copyright owner]"
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync $Id: amDelegation.xml,v 1.15 2009/12/21 22:02:42 veiming Exp $
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync Portions copyright 2014 ForgeRock AS.
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync-->
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync<!DOCTYPE ServicesConfiguration
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync PUBLIC "=//iPlanet//Service Management Services (SMS) 1.0 DTD//EN"
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync "jar://com/sun/identity/sm/sms.dtd">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync<ServicesConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Service name="sunAMDelegationService" version="1.0">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Schema
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync i18nFileName="amDelegation"
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync revisionNumber="30"
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync i18nKey="">
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <Global>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeSchema name="SubjectIdTypes"
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync type="list"
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync syntax="string"
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync i18nKey="">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <DefaultValues>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>ROLE</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>GROUP</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>FILTEREDROLE</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </DefaultValues>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeSchema>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubSchema name="Permissions">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubSchema name="Permission" inheritance="multiple">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeSchema name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeSchema name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubSchema>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubSchema>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubSchema name="Privileges">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubSchema name="Privilege" inheritance="multiple">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeSchema name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeSchema name="defaultSubjectInLegacyMode" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubSchema>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubSchema>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </Global>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Organization>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubSchema name="Permissions">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubSchema name="Permission" inheritance="multiple">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeSchema name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeSchema name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubSchema>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubSchema>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubSchema name="Privileges">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubSchema name="Privilege" inheritance="multiple">
508452243fd3328f7b9e0405d39fb9dc004e31b8vboxsync <AttributeSchema name="listOfPermissions" />
508452243fd3328f7b9e0405d39fb9dc004e31b8vboxsync <AttributeSchema name="defaultSubjectInLegacyMode" />
508452243fd3328f7b9e0405d39fb9dc004e31b8vboxsync </SubSchema>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubSchema>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </Organization>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync
f409459bdd4c15cdb8d7fb6c6d54338cce9ac814vboxsync <Policy>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeSchema name="READ"
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync type="single"
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync syntax="boolean"
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync uitype="radio"
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync i18nKey="READ">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <IsResourceNameAllowed/>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <BooleanValues>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <BooleanTrueValue i18nKey="allow">allow</BooleanTrueValue>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <BooleanFalseValue i18nKey="deny">deny</BooleanFalseValue>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </BooleanValues>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeSchema>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeSchema name="MODIFY"
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync type="single"
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync syntax="boolean"
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync uitype="radio"
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync i18nKey="MODIFY">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <IsResourceNameAllowed/>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <BooleanValues>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <BooleanTrueValue i18nKey="allow">allow</BooleanTrueValue>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <BooleanFalseValue i18nKey="deny">deny</BooleanFalseValue>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </BooleanValues>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeSchema>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeSchema name="DELEGATE"
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync type="single"
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync syntax="boolean"
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync uitype="radio"
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync i18nKey="DELEGATE">
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync <IsResourceNameAllowed/>
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync <BooleanValues>
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync <BooleanTrueValue i18nKey="allow">allow</BooleanTrueValue>
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync <BooleanFalseValue i18nKey="deny">deny</BooleanFalseValue>
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync </BooleanValues>
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync </AttributeSchema>
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync </Policy>
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync <PluginInterface
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync name="DelegationInterface"
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync interface= "com.sun.identity.delegation.interfaces.DelegationInterface"
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync i18nKey="sun-am-delegation-interface-name" />
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync </Schema>
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync <PluginSchema
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync name="DelegationPolicyImpl"
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync interfaceName= "DelegationInterface"
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync className= "com.sun.identity.delegation.plugins.DelegationPolicyImpl"
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync i18nKey="sun-am-delegation-policyimpl-name" />
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync <Configuration>
6e12ccc60ac657fb87e27b7a2b26e0a63bebe024vboxsync <GlobalConfiguration>
657b2c9f6d33f08001e5fa6f6e0572dcf0391013vboxsync <SubConfiguration name="Permissions">
657b2c9f6d33f08001e5fa6f6e0572dcf0391013vboxsync <SubConfiguration name="RealmAdmin" id="Permission">
657b2c9f6d33f08001e5fa6f6e0572dcf0391013vboxsync <AttributeValuePair>
657b2c9f6d33f08001e5fa6f6e0572dcf0391013vboxsync <Attribute name="resource" />
657b2c9f6d33f08001e5fa6f6e0572dcf0391013vboxsync <Value>*REALM/*</Value>
657b2c9f6d33f08001e5fa6f6e0572dcf0391013vboxsync </AttributeValuePair>
657b2c9f6d33f08001e5fa6f6e0572dcf0391013vboxsync <AttributeValuePair>
657b2c9f6d33f08001e5fa6f6e0572dcf0391013vboxsync <Attribute name="actions" />
657b2c9f6d33f08001e5fa6f6e0572dcf0391013vboxsync <Value>READ</Value>
657b2c9f6d33f08001e5fa6f6e0572dcf0391013vboxsync <Value>MODIFY</Value>
657b2c9f6d33f08001e5fa6f6e0572dcf0391013vboxsync <Value>DELEGATE</Value>
657b2c9f6d33f08001e5fa6f6e0572dcf0391013vboxsync </AttributeValuePair>
657b2c9f6d33f08001e5fa6f6e0572dcf0391013vboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="PolicyAdmin" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>*REALM/iPlanetAMPolicy*Service/*</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>MODIFY</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>DELEGATE</Value>
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <SubConfiguration name="RealmReadOnly" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>*REALM/sunAMRealmService/*</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
ae017640afff8b6cc50453182a4edf2eb0903a12vboxsync <AttributeValuePair>
ae017640afff8b6cc50453182a4edf2eb0903a12vboxsync <Attribute name="actions" />
ae017640afff8b6cc50453182a4edf2eb0903a12vboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
b986941f0aa5155c7fd37da0aa5876675a7680e4vboxsync </SubConfiguration>
b986941f0aa5155c7fd37da0aa5876675a7680e4vboxsync <SubConfiguration name="DatastoresReadOnly" id="Permission">
b986941f0aa5155c7fd37da0aa5876675a7680e4vboxsync <AttributeValuePair>
b986941f0aa5155c7fd37da0aa5876675a7680e4vboxsync <Attribute name="resource" />
b986941f0aa5155c7fd37da0aa5876675a7680e4vboxsync <Value>*REALM/sunIdentityRepositoryService/*</Value>
b986941f0aa5155c7fd37da0aa5876675a7680e4vboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="LogWrite" id="Permission">
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <Value>*@SM_CONFIG_ROOT_SUFFIX@/iPlanetAMLoggingService/1.0/application/*</Value>
b986941f0aa5155c7fd37da0aa5876675a7680e4vboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>MODIFY</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="LogRead" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>*@SM_CONFIG_ROOT_SUFFIX@/iPlanetAMLoggingService/1.0/application/*</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="AgentsReadWrite" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>*REALM/sunIdentityRepositoryService/1.0/application/agent*</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>MODIFY</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>DELEGATE</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="SAML2Admin" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>*REALM/sunFMSAML2MetadataService/*</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>MODIFY</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="IDFFAdmin" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
42aef05f4b27fb393967e581be04be455064c80avboxsync <Attribute name="resource" />
42aef05f4b27fb393967e581be04be455064c80avboxsync <Value>*REALM/sunFMIDFFMetadataService/*</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>MODIFY</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="WSFederationAdmin" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <Value>*REALM/sunFMWSFederationMetadataService/*</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>MODIFY</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="COTAdmin" id="Permission">
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <AttributeValuePair>
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <Attribute name="resource" />
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <Value>*REALM/sunFMCOTConfigService/*</Value>
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync </AttributeValuePair>
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <AttributeValuePair>
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <Value>MODIFY</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="EntitlementAdmin" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>*REALM/sunEntitlementService/*</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>MODIFY</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>DELEGATE</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="EntitlementRESTDecision" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>@SM_CONFIG_ROOT_SUFFIX@/sunEntitlementService/1.0/application/ws/1/entitlement/decision</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="EntitlementRESTDecisions" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>@SM_CONFIG_ROOT_SUFFIX@/sunEntitlementService/1.0/application/ws/1/entitlement/decisions</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="EntitlementRESTEntitlement" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>@SM_CONFIG_ROOT_SUFFIX@/sunEntitlementService/1.0/application/ws/1/entitlement/entitlement</Value>
e48239695d41f806ff02d8a60b97dc20d4822d7avboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="EntitlementRESTEntitlements" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>@SM_CONFIG_ROOT_SUFFIX@/sunEntitlementService/1.0/application/ws/1/entitlement/entitlements</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="EntitlementRESTPrivilegeWrite" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>@SM_CONFIG_ROOT_SUFFIX@/sunEntitlementService/1.0/application/ws/1/entitlement/privilege*</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>MODIFY</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="EntitlementRESTPrivilegeRead" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>@SM_CONFIG_ROOT_SUFFIX@/sunEntitlementService/1.0/application/ws/1/entitlement/privilege*</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="RealmResourceRead" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>REALM/rest/1.0/realms/read</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
1207f59aa62006952dbb0bf7700decf34d8caeb2vboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="PolicyResourceRead" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>REALM/rest/1.0/policies/read</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="PolicyResourceModify" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>REALM/rest/1.0/policies/modify</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>MODIFY</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="PolicyResourceEvaluate" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>REALM/rest/1.0/policies/evaluate</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="ReferralsResourceRead" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>REALM/rest/1.0/referrals/read</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="ReferralsResourceModify" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>REALM/rest/1.0/referrals/modify</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>MODIFY</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
e48239695d41f806ff02d8a60b97dc20d4822d7avboxsync <SubConfiguration name="ApplicationResourceRead" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>REALM/rest/1.0/applications/read</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="ApplicationResourceModify" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>REALM/rest/1.0/applications/modify</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>MODIFY</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="ApplicationTypesResourceRead" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>@SM_CONFIG_ROOT_SUFFIX@/rest/1.0/applicationtypes/read</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="ConditionTypesResourceRead" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>@SM_CONFIG_ROOT_SUFFIX@/rest/1.0/conditiontypes/read</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="SubjectTypesResourceRead" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>@SM_CONFIG_ROOT_SUFFIX@/rest/1.0/subjecttypes/read</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
1207f59aa62006952dbb0bf7700decf34d8caeb2vboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="SubjectAttributesResourceRead" id="Permission">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>@SM_CONFIG_ROOT_SUFFIX@/rest/1.0/subjectattributes/read</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="DecisionCombinersResourceRead" id="Permission">
1207f59aa62006952dbb0bf7700decf34d8caeb2vboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="resource" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>@SM_CONFIG_ROOT_SUFFIX@/rest/1.0/decisioncombiners/read</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="actions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>READ</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync
1207f59aa62006952dbb0bf7700decf34d8caeb2vboxsync <SubConfiguration name="Privileges">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="RealmAdmin" id="Privilege">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>RealmAdmin</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="defaultSubjectInLegacyMode" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>id=Organization Admin Role,ou=role,REALM,amsdkdn=cn=Organization Admin Role,REALM</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="LogAdmin" id="Privilege">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
1207f59aa62006952dbb0bf7700decf34d8caeb2vboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>LogWrite</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>LogRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="LogRead" id="Privilege">
e48239695d41f806ff02d8a60b97dc20d4822d7avboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>LogRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="LogWrite" id="Privilege">
3a8aa22ef125135ef67bfc396771bcee15ef02dfvboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>LogWrite</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="AgentAdmin" id="Privilege">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>RealmReadOnly</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>AgentsReadWrite</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>EntitlementRESTDecision</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>EntitlementRESTDecisions</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>EntitlementRESTEntitlement</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>EntitlementRESTEntitlements</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="FederationAdmin" id="Privilege">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>COTAdmin</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>IDFFAdmin</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>SAML2Admin</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>WSFederationAdmin</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="RealmReadAccess" id="Privilege">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>RealmResourceRead</Value>
e48239695d41f806ff02d8a60b97dc20d4822d7avboxsync <Value>RealmReadOnly</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="PolicyAdmin" id="Privilege">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>PolicyAdmin</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>EntitlementAdmin</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>RealmReadOnly</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>RealmResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>DatastoresReadOnly</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>PolicyResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>PolicyResourceModify</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>ReferralsResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>ReferralsResourceModify</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>ApplicationResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>ApplicationResourceModify</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>ApplicationTypesResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>SubjectTypesResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>ConditionTypesResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>DecisionCombinersResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>SubjectAttributesResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="defaultSubjectInLegacyMode" />
1207f59aa62006952dbb0bf7700decf34d8caeb2vboxsync <Value>id=Organization Policy Admin Role,ou=role,REALM,amsdkdn=cn=Organization Policy Admin Role,REALM</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
1207f59aa62006952dbb0bf7700decf34d8caeb2vboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="EntitlementRestAccess" id="Privilege">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync <Attribute name="listOfPermissions" />
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync <Value>EntitlementRESTDecision</Value>
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync <Value>EntitlementRESTDecisions</Value>
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync <Value>EntitlementRESTEntitlement</Value>
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync <Value>EntitlementRESTEntitlements</Value>
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync <Value>PolicyResourceEvaluate</Value>
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync </AttributeValuePair>
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync </SubConfiguration>
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync <SubConfiguration name="PrivilegeRestReadAccess" id="Privilege">
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync <AttributeValuePair>
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync <Attribute name="listOfPermissions" />
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync <Value>EntitlementRESTPrivilegeRead</Value>
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync <Value>PolicyResourceRead</Value>
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync </AttributeValuePair>
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync </SubConfiguration>
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync <SubConfiguration name="PrivilegeRestAccess" id="Privilege">
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync <AttributeValuePair>
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync <Attribute name="listOfPermissions" />
70ca8d009d026a301bf7fa08cd18c6494c45fdeevboxsync <Value>EntitlementRESTPrivilegeWrite</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>PolicyResourceModify</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="ReferralsReadAccess" id="Privilege">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>ReferralsResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="ReferralsModifyAccess" id="Privilege">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>ReferralsResourceModify</Value>
1207f59aa62006952dbb0bf7700decf34d8caeb2vboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="ApplicationReadAccess" id="Privilege">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>ApplicationResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="ApplicationModifyAccess" id="Privilege">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
1207f59aa62006952dbb0bf7700decf34d8caeb2vboxsync <Value>ApplicationResourceModify</Value>
1207f59aa62006952dbb0bf7700decf34d8caeb2vboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="ApplicationTypesReadAccess" id="Privilege">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>ApplicationTypesResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
1207f59aa62006952dbb0bf7700decf34d8caeb2vboxsync <SubConfiguration name="ConditionTypesReadAccess" id="Privilege">
1207f59aa62006952dbb0bf7700decf34d8caeb2vboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>ConditionTypesResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="SubjectTypesReadAccess" id="Privilege">
1207f59aa62006952dbb0bf7700decf34d8caeb2vboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>SubjectTypesResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
1207f59aa62006952dbb0bf7700decf34d8caeb2vboxsync </SubConfiguration>
1207f59aa62006952dbb0bf7700decf34d8caeb2vboxsync <SubConfiguration name="DecisionCombinersReadAccess" id="Privilege">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>DecisionCombinersResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <SubConfiguration name="SubjectAttributesReadAccess" id="Privilege">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Attribute name="listOfPermissions" />
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <Value>SubjectAttributesResourceRead</Value>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </AttributeValuePair>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </SubConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </GlobalConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <OrganizationConfiguration name="/">
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync <!-- Create empty organization configuration for
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync management of delegation policies -->
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </OrganizationConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </Configuration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync </Service>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync</ServicesConfiguration>
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync
4328e87247f4a96449677e199c7e99ef516fc1cevboxsync