Difference between revisions of "Argus Configuration"

From Gcube Wiki
Jump to: navigation, search
(Created page with 'In gCube Secure Infratructure only the PAP and PDP elements of Argus are needed. The configuration steps are described in Argus Site<ref name="Argus_Site">https://twiki.cern.ch/t…')
 
Line 20: Line 20:
 
==References==
 
==References==
 
<references/>
 
<references/>
 +
 +
[[Category:Security]]

Revision as of 13:06, 29 July 2011

In gCube Secure Infratructure only the PAP and PDP elements of Argus are needed. The configuration steps are described in Argus Site[1]. The only special configuration needed enables Role Based Access Control: it concerns the first two sections of file attribute-mappings.ini in PAP configuration folder: 

id = subject
subject.xacml-id = urn:oasis:names:tc:xacml:2.0:subject:role
subject.xacml-datatype = http://www.w3.org/2001/XMLSchema#anyURI
subject.xacml-target-element = subject
subject.xacml-match-function = urn:oasis:names:tc:xacml:1.0:function:anyURI-equal
 
id = subject-issuer
subject-issuer.xacml-id = http://authz-interop.org/xacml/subject/subject-x509-issuer
subject-issuer.xacml-datatype = http://www.w3.org/2001/XMLSchema#string
subject-issuer.xacml-target-element = subject
subject-issuer.xacml-match-function = urn:oasis:names:tc:xacml:1.0:function:string-equal

The other sections of the file are the default ones.


References

  1. https://twiki.cern.ch/twiki/bin/view/EGEE/AuthorizationFramework
Retrieved from "https://wiki.gcube-system.org/index.php?title=Argus_Configuration&oldid=12330"