Server dependencies

1. There must be at least one instance of the policy server.

2. We can have a single policy server and create as many domains as we want.

3. When a domain is created, a separate policy database is also created for each domain. The single policy server can access any of the distinct policy databases.

4. The policy server manages the policy database.

5. There must be only one policy database (master authorization database) in a domain.

6. The policy database must be on a highly available policy server with a robust file system.

7. Each policy database is subject to a regular backup procedure. The administrator can specify the location for the backup files.

8. The policy servers provide authorization database replication services to all other ISAM servers in the domain that run in local cache mode.

9. Each resource manager, such as ISAM WebSEAL, applies security policy based on information from either the policy database or from a replicated authorization database.

Parent topic: ISAM servers