Affiliate Marketing
Pls Subscribe this channel Subscribe ® Registered teknosys.in
Featured Post
chapter-64
*********************************************************START*******************************************************
You are here: 7: Policy Assertion Reference > Working with Encapsulated Assertions > Encapsulated Assertion Configuration Properties
When creating, cloning, or viewing details about an encapsulated assertion, the Encapsulated Assertion Configuration Properties appear. These properties allow you to configure the behavior and appearance of the assertion:
To access the Encapsulated Assertion Configuration Properties:
The Encapsulated Assertion Configuration Properties appear.
Note: Although it is possible to create multiple encapsulated assertions using the same underlying policy fragment, CA recommends against doing this.
The Artifact Version identifier is also visible in the Comment field of the policy revision created for the underlying policy fragment, to make it possible to roll the policy fragment back to its original state.
Notes: (1) The Artifact Version is not a version number and newer versions may not have an incremented number. It is simply a unique identifier, similar to a generated hash value. (2) The Artifact Version identifier does not change if you modify the encapsulated assertion. It will change only if another file (with a different artifact version) is used to import and overwrite the encapsulated assertion.
To enable debug tracing, you must select the "Enable debug policy tracing" check box in the [General] tab of the published service's properties. For more information, see Policy Debug Tracing.
Note: This setting does not enable or disable debug tracing. It merely controls whether tracing should include the individual assertions within the backing policy when policy tracing is enabled.
when done.
Configuring Inputs
Note: It is important to have a sound understanding of how the input definition can affect the flow of information between the encapsulated assertion and its parent policy. For more information, see "Understanding How Values are Passed to the Parent Policy" in Working with Encapsulated Assertions.
The Inputs section is used to define the input arguments for the encapsulated assertionâ??in other words, the values that will be passed to the underlying policy fragment. The table contains the following columns:
These column values are described in more detail in Table 136 below.
Tip: The Policy Manager will pre-configure inputs for you if the Auto-populate inputs and outputs check box was selected. You can change any auto-populated input as necessary.
Choose an action to perform:
To...
Do this...
Add an input
Edit an input
Delete an input
Reposition an input in the assertion properties
Tip: Repositioning an input only applies to inputs that are shown in the assertion properties dialog. It has no effect on functionality and does not apply to inputs suppressed from the dialog.
IMPORTANT: Be extremely careful when changing the inputs of an encapsulated assertion that is currently in use by policies. In particular, pay careful attention when adding new inputs or renaming existing inputs: ensure that the underlying policy fragment will respond gracefully if the input is not provided.
When adding or editing an input, the Argument Properties dialog is displayed:
Complete the properties as follows:
Table 137: Encapsulated assertions: Argument Properties
Setting
Properties
Name
Enter a name for the input. This name should generally match the name of a context variable from the parent context and should be meaningful to the underlying policy fragment.
The name must conform to the "Context Variable Naming Rules", described under Context Variables.
Type
From the drop-down list, choose a data type for the input. This sets the GUI control that is visible if the input is set to show in the assertion properties dialog.
Note: The data types "Message" or "Element" will always result in the child policy context containing a reference to the value from the parent context, while the other data types will vary depending on whether input is shown on the assertion properties. For more information, see Working with Encapsulated Assertions.
Show in assertion properties dialog
Select this check box to display the input in the assertion properties. When visible, all inputs of type "Message" and "Element" are aliased in the child policy context. All other data types are copied into the child policy context.
Clear this check box to hide the input from the assertion properties. When hidden, all values are aliased in the child policy context, and will appear in the Assertion Information dialog as variables used by the encapsulated assertion.
Tip: For more information, see "Understanding How Values are Passed to the Parent Policy" under Working with Encapsulated Assertions. Examples #1 and #2 in that section illustrate "aliasing", while Example #3 demonstrates "copying".
Label
Optionally enter a label that will appear in the assertion properties. If not specified, the Name is used as the label.
The Outputs section is used to define the context variables that will be set by the encapsulated assertion. Only the context variables declared here will be visible to the parent context once the encapsulated assertion has finished running.
Tip: The Policy Manager will pre-configure outputs for you if the Auto-populate inputs and outputs check box was selected.
Choose an action to perform:
Table 138: Encapsulated assertions: Result Properties
To...
Do this...
Add an output
Edit an output
Delete an output
IMPORTANT: Proceed with caution when changing the output of an encapsulated assertion currently in use. Ensure that any new output does not conflict or overwrite any context variables already in use by existing user policies. When modifying or removing an output, consider the behavior of any existing user policies that rely on that output.
When adding or editing an output, the Result Properties dialog is displayed:
Complete the fields:
Tip: The output Type is currently useful for your own documentation purposes, but it is not enforced at runtime. The type selected here will be displayed in the Assertion Information dialog for the encapsulated assertion.
*********************************************************END*******************************************************
*********************************************************START*******************************************************
To export a certificate
from the federated gateway trust store:
The Manage Certificates dialog appears.
to export and then click [Properties].
The Certificate Properties dialog
appears.
and then specify a file name and location for the exported certificate.
The certificate is exported.
to close the Certificate Properties dialog, then click [Close]
to close the Manage Certificates dialog.
*********************************************************END*******************************************************
*********************************************************START*******************************************************
this feature to share policies internally or externally, or to save copies
of policies for record-keeping purposes. Exported policies that are saved
locally can be renamed, deleted, or edited by replacement.
It is recommended that you only export valid policies. Validation confirms
the proper configuration and organization of a policy. See Validating a Policy for more information. An exported policy may contain disabled assertions. If security zones have been defined, you must have Read permissions to the policy in order to export.
The portable policy XML file generated during export includes references
to:
to the users and groups in the policy
routing
endpoints, or destinations, if included in the policy, and
assertions
, if present in the policy.
When exporting a policy using the browser
client
version of the Policy Manager, the Java applet
must be running in the trusted mode. For more information, see Policy Manager Browser Client.
To export a policy:
following methods:
name in the Services and Policies list
and then select Active Policy Assertions.
Or,
in the Services and Policies list.
The Export Policy dialog appears.
using the standard client:
Either use the default directory offered
or navigate to another location. If you use the default location (".l7tech\policy.templates"), the exported policy will appear
Note: Only exported policies saved as a template in the default directory
will appear under the Policy Templates section of the [Assertions] tab.
Policies saved to any other location will not appear in the Policy Templates
section. Policies can be imported
regardless of their saved locations.
using the browser client:
Navigate to a folder of your choice to
save the template.
Note:
Be sure to note the location of the saved templates for later import.
This is because there is no Policy Templates section in the [Assertions]
tab for the browser client version.
for the exported policy and then click [Save].
The policy is exported as a portable XML file which encapsulates all of
the assertions and back-end settings. The policy appears under Policy
Templates
in the [Assertions] tab (standard client version only).
Tip: You can open the exported XML file in a text editor to view policy details.
Be sure you have a backup before you make any modifications to the file.
*********************************************************END*******************************************************
*********************************************************START*******************************************************
You can export any private key that is stored in the software database, as either a *.p12 or a *.pfx file. The exported key is protected with a password.
Note: Private keys cannot be exported from a Hardware Security Module (HSM), due to the high-security mode of these type of keystores.
To export a private key:
select [Tasks] > Manage
The Manage Private Keys dialog appears.
*********************************************************END*******************************************************
*********************************************************START*******************************************************
The following topics describe how to export or import a policy, as well as to resolve any conflicts that may arise during importing.
*********************************************************END*******************************************************
Popular posts from this blog
California traffic signals
[Inside AdSense] Understanding your eCPM (effective cost per thousand impress...
"What is eCPM? What affects my eCPM? What can I do to earn a higher eCPM?" Effective cost per thousand impressions (eCPM) is the amount of revenue you can expect to earn from AdSense for every 1000 impressions shown on your site. Since eCPM helps you measure how well your ads are performing, we often hear questions from publishers about the factors that impact this metric and how it relates to their earnings. If you're using the new interface, you'll see that your reports show RPM (revenue per thousand impressions); RPM is just another term for eCPM, and it's calculated the same way, so we use these two terms interchangeably. To help provide some clarity, we're kicking off a two-part video series with more insights into how eCPM is calculated in order to help you maximize earnings. With the help of AdSense optimization specialist, Matthew Carpenter Arevalo, we'll show you the factors that affect eCPM, how to track user behavior and traffic patterns, and ...
Comments