Basic Credential Mapping
Configure the Basic Credential Mapping policy resource to set up a basic credential-mapping security policy.
General
The General section has the following fields.
Field | Description |
---|---|
Package | The name to be displayed as the label of the policy resource package. |
Name | The name of the policy resource. |
Description | A short description of the policy resource. |
Credential Mapping
You can choose to enforce either Fixed credential mapping or Conditional credential mapping.
Fixed
Select this option to ensure that a fixed set of credentials is applied to all users regardless of their user type or role. The Fixed section has the following fields:
Field | Description |
---|---|
Identity Provider | Select an Identity Provider to authenticate user credentials. |
Conditional
Select Conditional credential mapping to enforce credential mapping for authenticated users and anonymous users. Credentials are mapped for authenticated users if the request comes from an authenticated service. Credentials are mapped for anonymous users if the request comes from an unauthenticated service.
The Conditional section has the following fields:
Field | Description |
---|---|
Role-based Identity Providers | Type roles for authenticated users and associate an Identity Provider with each role. You can reuse the same Identity Provider for multiple roles. |
Authenticated Identity Provider | Select an Identity Provider shared resource for authenticated users. |
Anonymous Identity Provider |
To allow anonymous users access to your secure application, specify an Identity Provider. not To allow anonymous users access, do not specify an Identity Provider. Note: Application logic can also affect how credentials are mapped for anonymous users. For example, application logic might dictate that anonymous requests are redirected to specific entry points. If an anonymous request is directed to an enforced entry point, the request is rejected.
|