Policy Template to Intents Reference
The intents that a policy can provide is a subset of the intents that the policy template can provide; the policy configuration can narrow that set.
| Policy Set Template | Can Provide these Intents |
|---|---|
| Authorization By Role Policies | scaext:authorization.role |
| Basic Authentication Policies | scaext:clientAuthentication.basic |
| Basic Credential Mapping Policies | scaext:credentialMapping.basic |
| Basic Or Username Token Authentication Policies |
scaext:clientAuthentication.basic scaext:clientAuthentication.usernameToken |
| SAML Authentication For SSO Policies | scaext:clientAuthentication.ssoSAML |
| SAML Credential Mapping For SSO Policies | scaext:credentialMapping.ssoSAML |
| Username Token Authentication Policies | scaext:clientAuthentication.usernameToken |
| WS-Security Consumer Policies |
scaext:credentialMapping.wssSAML scaext:credentialMapping.usernameToken scaext:consumerIntegrity.wss scaext:consumerConfidentiality.wss |
| WS-Security Provider Policies |
scaext:clientAuthentication.wssSAML scaext:clientAuthentication.usernameToken scaext:clientAuthentication.x509 scaext:providerIntegrity.wss scaext:providerConfidentiality.wss |
TIBCO Business Studio lets you specify several security intents on a binding or component. For simplicity, we recommend satisfying those intents with fewer policies and policy sets (rather than proliferating many). That is, where possible, use policies that satisfy several intents.
The policy samples in TIBCO_HOME/amx/version/samples/policy/samples.zip represent some typical use cases. They are organized in subdirectories by policy template name.