Policy Template to Intents Reference

The intents that a policy can provide is a subset of the intents that the policy template can provide; the policy configuration can narrow that set.

The intents that each policy template can provide are listed below.

Policy Set Template Can Provide these Intents
Authorization By Role Policiesscaext:authorization.role
Basic Authentication Policiesscaext:clientAuthentication.basic
Basic Credential Mapping Policiesscaext:credentialMapping.basic
Basic Or Username Token Authentication Policies

scaext:clientAuthentication.basic

scaext:clientAuthentication.usernameToken

SAML Authentication For SSO Policiesscaext:clientAuthentication.ssoSAML
SAML Credential Mapping For SSO Policiesscaext:credentialMapping.ssoSAML
Username Token Authentication Policiesscaext:clientAuthentication.usernameToken
WS-Security Consumer Policies

scaext:credentialMapping.wssSAML

scaext:credentialMapping.usernameToken

scaext:consumerIntegrity.wss

scaext:consumerConfidentiality.wss

WS-Security Provider Policies

scaext:clientAuthentication.wssSAML

scaext:clientAuthentication.usernameToken

scaext:clientAuthentication.x509

scaext:providerIntegrity.wss

scaext:providerConfidentiality.wss

TIBCO Business Studio - BPM Edition lets you specify several security intents on a binding or component. For simplicity, we recommend satisfying those intents with fewer policies and policy sets (rather than proliferating many). That is, where possible, use policies that satisfy several intents.

The policy samples in TIBCO_HOME/amx/version/samples/policy/samples.zip represent some typical use cases. They are organized in subdirectories by policy template name.