When policies are configured on the OpenAM Administration Console, how do all the policy agents get notified of the update? This question was put forward to me by one of my customers.
The answer is pretty straight-forward.
1st: Ensure Agent Notification is enabled
2nd: Create the necessary policies in the Policy tab
Now, the trick here is to make sure you click SAVE once rules are created.
We are done. To confirm whether the newly updated policies are broadcasted to all policy agents, look for the following segment in Policy Agent debug log:
2013-04-22 22:43:54.382 Debug 7403:7f27140011b0 PolicyEngine: PolicyEngine::policy_notify :Handling notification.
2013-04-22 22:43:54.382 Info 7403:7f27140011b0 PolicyEngine: PolicyEngine::policy_notification_handler:Parsing Policy Change Notification
:
:
:
2013-04-22 22:43:54.383 Debug 7403:7f27140011b0 ThreadPool: ThreadPool::dispatch(): Successfully dispatched the work.
An XML file is transferred from the OpenAM server to each Policy Agent for the notification to take place.
.
No comments:
Post a Comment