Associate the WebSEAL junction to the ACLs

Associate the WebSEAL junction to the ACLs

Use the pdadmin utility to associate the WebSEAL junction with a URL path prefix to the corresponding IBM Security Access Manager access control list (ACL).
acl attach prefix/webseal_junction/url_path_prefix acl_name
where:

prefix ISAM Object Space prefix for the WebSEAL server. To view:
pdadmin> object list /WebSEAL
/WebSEAL/tam-server

webseal_junction WebSEAL junction created using server task create. For example itimserver
url_path_prefix Name of the URL path prefix:

ISIM administrative console itim/console
self-service console itim/self
Identity Service Center itim/ui

acl_name Name of the corresponding ISAM ACL:

ITIM-ACL
ITIM-Self-Help-ACL

For example, associate the fully qualified WebSEAL junction name...
/WebSEAL/tam-server/itimserver/itim/console

...to...

ISIM admin console access to the ISAM ACL ITIM-ACL.
acl attach /WebSEAL/tam-server/itimserver/itim/console ITIM-ACL

ISIM self-service console access to the ISAM ACL ITIM-Self-Help-ACL.
acl attach /WebSEAL/tam-server/itimserver/itim/self ITIM-Self-Help-ACL

ISIM Identity Service Center access to the ISAM ACL ITIM-ISC-ACL.
acl attach /WebSEAL/tam-server/itimserver/itim/ui ITIM-ISC-ACL

Parent topic: Configure ISIM for SSO with application server trust association interceptors and ISAM WebSEAL