6.1 Configuring an External Attribute Source Policy

  1. In the Administration Console, click Policies > Policies.

  2. Click New.

  3. Specify a name for the policy, select Identity Server: External Attribute Source for the type of policy, then click OK.

  4. Fill in the following fields:

    Description: (Optional) Describe the purpose of this policy.

    Priority: Specify the order in which a rule is applied in the policy, when the policy has multiple rules. The highest priority is 1 and the lowest priority is 10.

  5. In the Actions section, click New, then select Fetch Attributes.

  6. Specify the following details:

    External Attribute Name: Specify the name of the attribute to be obtained through this policy.

    Value: Specify either String Constant or Data Extension for the attribute value.

    If you select String Constant, provide the value in the text box. The policy returns the string constant.

    If you select Data Extension, select the extension file from the list. The policy returns the attributes based on the logic defined in the class.

    For more information about policy extension, see Section 1.6, Adding Policy Extensions.

  7. To save the policy, click OK twice, then click Apply Changes.

  8. After creating an External Attribute Source policy, create a shared secret. This shared secret is used in configuring other policies or can be used by the Identity Servers in their attribute sets to retrieve attributes from external sources.

    For more information, see Creating Shared Secret Names in the NetIQ Access Manager 3.2 SP3 Identity Server Guide.