The runtime security services external authorization service (EAS) provides the policy enforcement point function for context-based access.
You can configure the runtime security services EAS to include context-based access decisions as part of the standard authorization on WebSEAL requests. WebSEAL becomes the authorization enforcement point for access to resources that context-based access protects.
Action | Description |
---|---|
Permit | Grants access to the protected resource. |
Deny | Denies access to the protected resource. |
Permit with Authentication | Grants access to the protected resource, after a specific authentication action successfully takes place. |
Permit with Obligation | Grants access to the protected resource, after the user successfully authenticates with a secondary challenge. |
Deny with Obligation | Denies access to the protected resource, after the user unsuccessfully responds to a secondary challenge. |
The following steps set up the initial integration with IBM Security Access Manager for Mobile:
See the IBM Security Access Manager for Web information center for information about WebSEAL at http://pic.dhe.ibm.com/infocenter/tivihelp/v2r1/topic/com.ibm.isam.doc_80/webseal.html.