Erman Arslan's Oracle Forum Middleware / Weblogic

Re: oam-policy-mgr is failed status in Deployment.

Posted by srinu on
URL: http://erman-arslan-s-oracle-forum.114.s1.nabble.com/oam-policy-mgr-is-failed-status-in-Deployment-tp5648p5679.html

Include the OAM Admin Log Here I am enclosing the oam_policy.xml file. The location of the file was OAM_POLICY_FILE = /u00/app/oracle/IDMDEV/user_projects/domains/OAM_Domain/config/fmwconfig/oam-policy.xml. The content of the file is as below.

<?xml version="1.0" encoding="UTF-8" standalone="true"?>
<oam-policy>
<store-version version="11.1.2.0.0"/>
<change-record-number value="1"/>
<shared-components>
<resource-types>
<resource-type id="c9f6f6d8-145b-4a54-8c4a-659c2d735807" description="HTTP Description" name="HTTP" read-only="true">
<operation description="CONNECT Operation" name="CONNECT" read-only="true"/>
<operation description="OPTIONS Operation" name="OPTIONS" read-only="true"/>
<operation description="PUT Operation" name="PUT" read-only="true"/>
<operation description="POST Operation" name="POST" read-only="true"/>
<operation description="TRACE Operation" name="TRACE" read-only="true"/>
<operation description="HEAD Operation" name="HEAD" read-only="true"/>
<operation description="GET Operation" name="GET" read-only="true"/>
<operation description="DELETE Operation" name="DELETE" read-only="true"/>
</resource-type>
<resource-type id="cdf8ad8e-bffc-4056-9755-02cb13f153bc" description="Resources for representing Token Service Relying Party" name="TokenServiceRP" read-only="true">
<operation description="Token Issue Operation" name="ISSUE" read-only="true"/>
</resource-type>
<resource-type id="f97272e1-808b-423a-ad86-aa64cf54a9b4" description="Resources for representing WebLogic Authentication schemes" name="wl_authen" read-only="true">
<operation description="LOGIN operation" name="LOGIN" read-only="true"/>
</resource-type>
</resource-types>
<authn-schemes>
<authn-scheme id="77976fc5-5bc7-4f98-9f5b-13239a1c078f" version="1" description="FA Auth Scheme" name="FAAuthScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>FORM</challenge-mechanism>
<challenge-param>










</challenge-param>
<authn-module name="FAAuthnModule"/>
</authn-scheme>
<authn-scheme id="78e0e57f-b117-4814-b9bc-f4adc6b45d97" version="1" description="LDAP Scheme" name="LDAPScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>FORM</challenge-mechanism>
<challenge-param>





</challenge-param>
<authn-module name="LDAP"/>
</authn-scheme>
<authn-scheme id="92499582-ac71-419d-8c3e-5717e87a7e5e" version="1" description="Authentication scheme for OAM Administration Console" name="OAMAdminConsoleScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>FORM</challenge-mechanism>
<challenge-param>





</challenge-param>
<authn-module name="LDAP"/>
</authn-scheme>
<authn-scheme id="8bec2f7b-9c46-4789-9e55-7489d81fc8f6" version="1" description="LDAP Scheme. No Password validation. Username assertion only." name="LDAPNoPasswordValidationScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>FORM</challenge-mechanism>
<challenge-param>





</challenge-param>
<authn-module name="LDAPNoPasswordAuthModule"/>
</authn-scheme>
<authn-scheme id="a45fa4e3-3237-41fc-bbb8-f10e06a5369c" version="1" description="User authentication and password policy verification" name="PasswordPolicyValidationScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>FORM</challenge-mechanism>
<challenge-param>






</challenge-param>
<authn-module name="Password Policy Validation Module"/>
</authn-scheme>
<authn-scheme id="d87e2238-245e-4100-a342-047b5920f66b" version="1" description="BASIC Scheme" name="BasicScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>BASIC</challenge-mechanism>
<challenge-param>





</challenge-param>
<authn-module name="LDAP"/>
</authn-scheme>
<authn-scheme id="d423ce2c-d81d-4c65-8d38-07ff6ee922c1" version="1" description="Kerberos Scheme" name="KerberosScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>WNA</challenge-mechanism>
<challenge-param>


</challenge-param>
<authn-module name="Kerberos"/>
</authn-scheme>
<authn-scheme id="48b64326-d508-417b-9638-70a85c0cf255" version="1" description="X509 Scheme" name="X509Scheme" auth-level="5" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>X509</challenge-mechanism>
<challenge-param>

</challenge-param>
<authn-module name="X509"/>
</authn-scheme>
<authn-scheme id="713ae285-bb3d-4037-8ab7-510d88a68ee5" version="1" description="Primarily used for clients that don't support URL redirect or cookies" name="BasicSessionlessScheme" auth-level="1" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>BASIC</challenge-mechanism>
<challenge-param>

</challenge-param>
<authn-module name="LDAP"/>
</authn-scheme>
<authn-scheme id="8f713dd9-0d84-4f5e-ae06-7aa11bbd766f" version="1" description="Basic Scheme for FA set with authentication level 2" name="BasicFAScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>BASIC</challenge-mechanism>
<challenge-param>





</challenge-param>
<authn-module name="LDAP"/>
</authn-scheme>
<authn-scheme id="f110b248-46c8-4a9c-819a-be077d98e457" version="1" description="Anonymous Authentication Scheme" name="AnonymousScheme" auth-level="0" type="allow">
<challenge-redirect-url>/oam/server</challenge-redirect-url>
<challenge-mechanism>NONE</challenge-mechanism>
<challenge-param>

</challenge-param>
<authn-module name="AnonymousModule"/>
</authn-scheme>
<authn-scheme id="f7e264b0-7d27-4b9e-bb73-011b63398d58" version="1" description="FA Admin Local Scheme" name="FAAdminLocalScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>FORM</challenge-mechanism>
<challenge-param>







</challenge-param>
<authn-module name="FALocalAdminLoginModule"/>
</authn-scheme>
<authn-scheme id="18f994b1-48d2-4d9d-8e05-a50da8b71816" version="1" description="Adaptive Authentication scheme provides the abilty to challenge users for stronger multifactor authenication like OTP for sensitive application." name="AdaptiveAuthenticationScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>FORM</challenge-mechanism>
<challenge-param>





</challenge-param>
<authn-module name="AdaptiveAuthenticationModule"/>
</authn-scheme>
<authn-scheme id="6f551746-6a3a-493e-be96-13bf89fe1983" version="1" description="Authentication scheme for OIM resources" name="OIMScheme" auth-level="1" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>FORM</challenge-mechanism>
<challenge-param>





</challenge-param>
<authn-module name="LDAP"/>
</authn-scheme>
<authn-scheme id="3d73bb1c-ccec-4bff-87d2-991679bf0b08" version="1" description="OAAMBasic, challenge method should only be FORM" name="OAAMBasic" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>FORM</challenge-mechanism>
<challenge-param>







</challenge-param>
<authn-module name="LDAP"/>
</authn-scheme>
<authn-scheme id="73d70b79-be46-4bca-ba3f-738f28c94523" version="1" description="OAAMAdvanced" name="OAAMAdvanced" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>FORM</challenge-mechanism>
<challenge-param>




</challenge-param>
<authn-module name="LDAP"/>
</authn-scheme>
<authn-scheme id="c0dffe07-c8b6-465b-a741-be32ab626ebc" version="1" description="OIFScheme" name="OIFScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>DAP</challenge-mechanism>
<challenge-param>




</challenge-param>
<authn-module name="DAP"/>
</authn-scheme>
<authn-scheme id="f2f3eb97-aad9-42c0-b81b-808b8a0c7617" version="1" description="OAM10gScheme" name="OAM10gScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>OAM10G</challenge-mechanism>
<challenge-param>


</challenge-param>
<authn-module name="LDAPNoPasswordAuthModule"/>
</authn-scheme>
<authn-scheme id="1ed6d600-b878-43b1-9673-16e4872725d3" version="1" description="TAPScheme" name="TAPScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>DAP</challenge-mechanism>
<challenge-param>




</challenge-param>
<authn-module name="DAP"/>
</authn-scheme>
<authn-scheme id="c2f0b087-0a8e-4773-a1a1-cbd35089ce86" version="1" description="OICScheme" name="OICScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>DAP</challenge-mechanism>
<challenge-param>

</challenge-param>
<authn-module name="TAPModule"/>
</authn-scheme>
<authn-scheme id="bf1ea190-dce4-4eda-82dc-64c1bcf7a462" version="1" description="TAPResponseOnlyScheme" name="TAPResponseOnlyScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>DAP</challenge-mechanism>
<challenge-param>

</challenge-param>
<authn-module name="DAP"/>
</authn-scheme>
<authn-scheme id="1ddabb20-022a-48d1-b7f8-c0f140d0e668" version="1" description="FederationScheme" name="FederationScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>FORM</challenge-mechanism>
<challenge-param>







</challenge-param>
<authn-module name="FederationPlugin"/>
</authn-scheme>
<authn-scheme id="67cf7ea1-10f9-4d73-afc3-d79f3abab646" version="1" description="FederationMTScheme" name="FederationMTScheme" auth-level="2" type="allow">
<challenge-redirect-url>/oam/server/</challenge-redirect-url>
<challenge-mechanism>FORM</challenge-mechanism>
<challenge-param>







</challenge-param>
<authn-module name="FederationMTPlugin"/>
</authn-scheme>
<default-authn-scheme id="78e0e57f-b117-4814-b9bc-f4adc6b45d97"/>
</authn-schemes>
<authn-modules/>
<host-identifiers>
<host-identifier id="f290bafa-e263-487e-9259-a861ccfcd19e" description="Host identifier for IAM Suite resources" name="IAMSuiteAgent">
<host name="IAMSuiteAgent" port="80"/>
<host name="IAMSuiteAgent"/>
</host-identifier>
</host-identifiers>
</shared-components>
<application-domains>
<application-domain id="4839adb5-7689-4d3e-9c5b-3e602662eb14" description="Policy objects enabling integration with Oracle Fusion Applications" name="Fusion Apps Integration" policy-ordering="false">
<resources>
<resource id="22cec14a-10e3-47c4-aadb-7409bbb78158" description="User ID assertion path" type="f97272e1-808b-423a-ad86-aa64cf54a9b4">
<url>/Authen/UsernameAssertion</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="f07b91e5-aec0-4153-823a-c2e8fb638e52" description="Basic authentication/OAM token generation path" type="f97272e1-808b-423a-ad86-aa64cf54a9b4">
<url>/Authen/Basic</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="b4928448-46ad-4380-8bd2-8e00b5860b6a" description="OAM session validation path" type="f97272e1-808b-423a-ad86-aa64cf54a9b4">
<url>/Authen/SSOToken</url>
<protection-level>PROTECTED</protection-level>
</resource>
</resources>
<authn-policies>
<authn-policy id="84a73fad-3e37-44b8-97ba-a076932e692f" description="Fusion Application SSO using BASIC authentication" name="Application SSO" enabled="true" use-default-authn-scheme="false">
<resource id="f07b91e5-aec0-4153-823a-c2e8fb638e52"/>
<resource id="b4928448-46ad-4380-8bd2-8e00b5860b6a"/>
<responses>
<success-event>
<response value="$user.groups" name="obmygroups" type="HEADER"/>
<response value="$user.userid" name="uid" type="HEADER"/>
</success-event>
</responses>
<authn-scheme id="d87e2238-245e-4100-a342-047b5920f66b"/>
</authn-policy>
<authn-policy id="ab682697-2e5a-440e-ba67-591dc1f89cf8" description="User ID assertion for a user previously authenticated by the application" name="User ID Assertion" enabled="true" use-default-authn-scheme="false">
<resource id="22cec14a-10e3-47c4-aadb-7409bbb78158"/>
<responses>
<success-event>
<response value="$user.groups" name="obmygroups" type="HEADER"/>
<response value="$user.userid" name="uid" type="HEADER"/>
</success-event>
</responses>
<authn-scheme id="8bec2f7b-9c46-4789-9e55-7489d81fc8f6"/>
</authn-policy>
</authn-policies>
<authz-policies>
<authz-policy id="7fb56464-4d64-4234-9339-bdbc72fe4ff1" description="Validate the OAM session referenced by a previously-issued token" name="Application SSO Validation" enabled="true" use-implied-constraints="false">
<resource id="b4928448-46ad-4380-8bd2-8e00b5860b6a"/>
<responses/>
<conditions>
<condition description="This condition always evaluates to true." name="TRUE" type="TRUE"/>
</conditions>
<rules>
<rule effect="ALLOW">
<condition-combiner type="SIMPLE">
<simple combiner-mode="ALL">
<condition-name>TRUE</condition-name>
</simple>
</condition-combiner>
</rule>
</rules>
</authz-policy>
</authz-policies>
</application-domain>
<application-domain id="61bfea31-9bd1-43c8-96a4-d67e3836f3cc" description="Policy objects enabling OAM Agent to protect deployed IAM Suite applications" name="IAM Suite" policy-ordering="false">
<resources>
<resource id="11cb1d63-bafe-4660-9e24-a33d88e5601a" description="All resources for OAM Admin Console" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/oamconsole/**</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="5a818e13-e658-4f08-b467-42addcb409e0" description="All resources for OAM Policy Manager" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/access/**</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="ae617063-a04e-4da2-9b9a-9bf7aecace03" description="Resource for OIC" type="f97272e1-808b-423a-ad86-aa64cf54a9b4">
<url>/OICAuthentication</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="44222ee1-b220-4a09-ab6f-d9c0bac7698d" description="Resource for OIC Token Exchange" type="f97272e1-808b-423a-ad86-aa64cf54a9b4">
<url>/OICTokenExchange</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="a8f823cc-a77b-420d-b44f-d3f71a04d0b9" description="All resources for WLS console" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/console/**</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="9874af68-223c-4cfe-a830-c4d2224767c6" description="All resources for EM Console" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/em/**</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="4943a221-8f99-4764-a4e6-d9e15a66879d" description="All resources for OINAV Dashboard" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/oinav/**</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="05326cfe-b7fa-447a-b351-b0c5108b2878" description="All resources for APM Console" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/apm/**</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="3c227ccd-3dcd-42fd-bafb-514f2e6ac173" description="All resources for OAAM Console" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/oaam_admin/**</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="787e1d3a-597f-4408-ac5f-6c4204297279" description="TAP resource protected by IAMSuite" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/oamTAPAuthenticate</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="5f0fc46f-4a17-4653-8ebf-f1108d7450df" description="OIM Admin page" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/admin/faces/pages/Admin.jspx</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="cf587b95-10a8-447d-a14d-5cae1fab22e9" description="OIM Self page" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/oim/faces/pages/Self.jspx</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="c5193154-7e0f-4fc1-ba7c-3f7feffa409d" description="OIM Admin page" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/oim/faces/pages/Admin.jspx</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="e2668409-886b-492c-8b31-3c5ea87ba125" description="Identity Faces home" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/identity/faces/home</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="c47e522a-3990-46db-ae02-f6e634845f06" description="SysAdmin Faces home" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/sysadmin/faces/home</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="211c739a-cf67-4319-9bab-dcf8f63d2507" description="Identity" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/identity</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="4a2080da-2620-47d1-a009-7da94a81b39e" description="OIM Identity" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/identity/</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="77aa5424-8820-471e-912f-a93df0d8f671" description="Identity faces request" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/identity/faces/request</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="0596caf9-483a-40c5-a2ab-5d7afc34c19b" description="Identity faces trackregistrationrequests" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/identity/faces/trackregistrationrequests</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="b6fbd71d-1931-47d1-98f7-4a5aa940dbde" description="Identity faces taskdetails" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/identity/faces/taskdetails</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="91c4a840-80e1-481b-b94d-785f52d995e8" description="SysAdmin" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/sysadmin</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="20097233-b620-4e8a-831b-a6a55ca61857" description="BIP Console" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/xmlpserver</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="774fd7df-7aa4-40ed-b0fc-769b8ed02997" description="OIM SysAdmin" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/sysadmin/</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="566330f7-1101-49e7-a84e-e5fe448b4f41" description="Mobile & Social OAuth Resources" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/ms_oauth/oauth2/ui/**</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="b47def27-19e8-4f27-9b5b-1d7427db74cd" description="Resource for OAM impersonation consent" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/oamImpersonationConsent</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="78cda7e8-896e-4fa6-8657-aef99cc4943f" description="Resource for authenticating credentials with OAM using APIs" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/oamUserPasswordAuthentication</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="af755820-76e2-4fea-8e91-326f47fdeb72" description="Resource for authenticating with OAM redirection by agent" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/oamDirectAuthentication</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="f35eca52-4f70-41df-85f7-fdd1c2e80825" description="LowerLevel Password Management page" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/admin/faces/pages/pwdmgmt.jspx</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="59fe4fbe-a1ee-4114-affe-cecbee765a65" description="OIM LowerLevel Password Management page" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/identity/faces/firstlogin</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="22a58ddc-69f5-46ca-a49a-ccab07b6bf97" description="All Xlwebapp pages" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/xlWebApp/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="e7a8e4b7-fb81-4dfb-b9ec-a77f9e2845c2" description="All Nexawebapp pages" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/Nexaweb/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="2dbc3f6c-dd2f-41e5-beff-ee1fc0fe1437" description="All CertificationCallbackService resources" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/CertificationCallbackService/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="8f7bcade-63ee-4833-943e-9a26aa09a658" description="All SOA resources" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/soa-infra/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="609b4d8d-77d6-4b3a-b599-b1dc224fb375" description="All provisioning resources" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/provisioning-callback/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="10d1a9e8-7c8a-4203-9fe3-1684c7d6f9d2" description="All OIM Console files" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/identity/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="94658088-0532-4f16-a404-d266e802b3e6" description="Integration" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/integration/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="ffe98a79-6b42-4ad2-b237-6dc52b90d2b4" description="OIM JMX config lifecycle" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/jmx-config-lifecycle/**</url>
<protection-level>UNPROTECTED</protection-level>
</resource>
<resource id="90fbc0ab-e9ae-4632-8dea-816bf5b8e01c" description="OIM SchedulerService" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/SchedulerService-web/**</url>
<protection-level>UNPROTECTED</protection-level>
</resource>
<resource id="c945bed7-7f6b-4cca-bac2-7274a48325cb" description="OIM sodcheck" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/sodcheck/**</url>
<protection-level>UNPROTECTED</protection-level>
</resource>
<resource id="ffce69e5-eab9-4cb2-98ba-bbe8101e68f3" description="OIM smplws" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/spmlws/**</url>
<protection-level>UNPROTECTED</protection-level>
</resource>
<resource id="7ff6c12e-6d60-4681-9137-a79347968c9b" description="OIM spml xsd" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/spml-xsd/**</url>
<protection-level>UNPROTECTED</protection-level>
</resource>
<resource id="d00dffaf-92d6-415a-a8f5-8e3211d5f969" description="OIM XIMDD" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/XIMDD/**</url>
<protection-level>UNPROTECTED</protection-level>
</resource>
<resource id="f7d39709-9310-4185-9446-94ef97541be8" description="All admin files" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/admin/**</url>
<protection-level>UNPROTECTED</protection-level>
</resource>
<resource id="9e9fd6e9-b1ce-463e-baff-4efad5b65df8" description="All OIM files" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/oim/**</url>
<protection-level>UNPROTECTED</protection-level>
</resource>
<resource id="f1905be3-9747-480e-86b4-642c08f83736" description="All SysAdmin files" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/sysadmin/**</url>
<protection-level>UNPROTECTED</protection-level>
</resource>
<resource id="9ddcb572-1418-47bb-83e2-ad5d3e594740" description="All Role SOD files" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/role-sod/**</url>
<protection-level>UNPROTECTED</protection-level>
</resource>
<resource id="99585771-02fa-4dba-a355-d0a870f2c169" description="All callbackResponseService files" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/callbackResponseService/**</url>
<protection-level>UNPROTECTED</protection-level>
</resource>
<resource id="7d8e8427-7beb-4aa9-b70a-f23d8f9f8d88" description="All HTTPClnt files" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/HTTPClnt/**</url>
<protection-level>UNPROTECTED</protection-level>
</resource>
<resource id="55bf232f-80c2-4460-8439-0f5084556015" description="OIM workflowservice" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/workflowservice/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="e08c17d7-d62f-4e8f-a24b-01f2c93d943f" description="All OAM resources" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/oam/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="07c28ed6-7705-4326-9f50-1a34438566b2" description="All ODSM resources" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/odsm/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="733e2399-172a-44da-bcbc-0c743c0d4bed" description="Fusion Apps Login Page" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/fusion_apps/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="67ec6ffc-49f3-4c11-8805-8c1288232292" description="All OAM CSS files" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/.../*.css</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="6ee35f44-4bfd-4fe3-80da-a1f8bea1b012" description="All OAM PNG files" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/.../*.png</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="ba822520-74f7-4f78-9432-dc486e2a5096" description="All OAM GIF files" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/.../*.gif</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="f939ecd1-cd99-475a-bbb9-4886d9659b57" description="All OAM ico files" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/.../*.ico</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="7c93bf00-1837-4183-a32b-e097b28f787b" description="favicon file" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/favicon.ico</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="c3efdc44-3f3a-4ea0-a75f-f5d37973ec33" description="Mobile & Social OAuth Endpoints" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/ms_oauth/oauth2/endpoints/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="193d358b-fcdb-450b-beb2-1ae9bb78989f" description="Mobile & Social OAuth UI" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/ms_oauth/oauth2/oammsui/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="b716c2b7-5523-46f5-85e5-2ec5e60520a0" description="Mobile & Social OAuth resources" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/ms_oauth/resources/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="4e1f0874-ca3d-4c6e-ac63-31f80709b486" description="Mobile & Social OAuth UI images" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/ms_oauth/img/*</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="3522ad18-0b20-4c83-a562-5ef27ddea8a6" description="Mobile & Social OAuth UI css" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/ms_oauth/style/*</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="2bbdfc2d-15f7-4c5b-9054-82dd0330ab25" description="TAP Resource to be asserted against" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/oamTAPResponseAssertResource</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="74ef7062-8305-4c53-8d02-3734df8a1da9" description="Used for token requests with missing token service relying party." type="cdf8ad8e-bffc-4056-9755-02cb13f153bc">
<url>MissingRP</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="64b93866-b113-429c-8071-52db585651d7" description="Used for token requests with unresolved token service relying party." type="cdf8ad8e-bffc-4056-9755-02cb13f153bc">
<url>UnknownRP</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="4891b64a-3d50-4583-8d88-df08869fd1eb" description="Federation SSO SP Service URL" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/oam/server/fed/sp/sso/service</url>
<protection-level>PROTECTED</protection-level>
</resource>
<resource id="7848893f-f758-4bd8-9280-05b206f3055b" description="All resources for OAAM Server" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/oaam_server/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
<resource id="9d889bce-5b72-41c3-b63e-5c0342a0b948" description="Offline OAAM resources" type="c9f6f6d8-145b-4a54-8c4a-659c2d735807" hostidentifier="f290bafa-e263-487e-9259-a861ccfcd19e">
<url>/oaam_offline/**</url>
<protection-level>EXCLUDED</protection-level>
</resource>
</resources>
<authn-policies>
<authn-policy id="22723efa-5b74-44fb-9d52-9cb0a9ed0161" description="Protected resource policy for OAM Administration Console" name="OAM Admin Console Policy" enabled="true" use-default-authn-scheme="false">
<resource id="11cb1d63-bafe-4660-9e24-a33d88e5601a"/>
<resource id="5a818e13-e658-4f08-b467-42addcb409e0"/>
<responses>
<success-event/>
</responses>
<authn-scheme id="92499582-ac71-419d-8c3e-5717e87a7e5e"/>
</authn-policy>
<authn-policy id="2407be80-a5f2-4e43-9abb-eb1c0dde459e" description="Protected resource policy for OIC Resources" name="OICAuthenticationPolicy" enabled="true" use-default-authn-scheme="false">
<resource id="ae617063-a04e-4da2-9b9a-9bf7aecace03"/>
<responses>
<success-event/>
</responses>
<authn-scheme id="78e0e57f-b117-4814-b9bc-f4adc6b45d97"/>
</authn-policy>
<authn-policy id="b0488964-f249-474e-be4a-32fba9377c4f" description="Protected resource policy for OIC Token Exchange" name="OICTokenExchangePolicy" enabled="true" use-default-authn-scheme="false">
<resource id="44222ee1-b220-4a09-ab6f-d9c0bac7698d"/>
<responses>
<success-event/>
</responses>
<authn-scheme id="8bec2f7b-9c46-4789-9e55-7489d81fc8f6"/>
</authn-policy>
<authn-policy id="72d9f529-a0b3-4769-8aec-7b1f61b61d47" description="Protected Authentication Policy for OAMAgent" name="Protected HigherLevel Policy" enabled="true" use-default-authn-scheme="false">
<resource id="a8f823cc-a77b-420d-b44f-d3f71a04d0b9"/>
<resource id="9874af68-223c-4cfe-a830-c4d2224767c6"/>
<resource id="4943a221-8f99-4764-a4e6-d9e15a66879d"/>
<resource id="05326cfe-b7fa-447a-b351-b0c5108b2878"/>
<resource id="3c227ccd-3dcd-42fd-bafb-514f2e6ac173"/>
<resource id="787e1d3a-597f-4408-ac5f-6c4204297279"/>
<resource id="5f0fc46f-4a17-4653-8ebf-f1108d7450df"/>
<resource id="cf587b95-10a8-447d-a14d-5cae1fab22e9"/>
<resource id="c5193154-7e0f-4fc1-ba7c-3f7feffa409d"/>
<resource id="e2668409-886b-492c-8b31-3c5ea87ba125"/>
<resource id="c47e522a-3990-46db-ae02-f6e634845f06"/>
<resource id="211c739a-cf67-4319-9bab-dcf8f63d2507"/>
<resource id="4a2080da-2620-47d1-a009-7da94a81b39e"/>
<resource id="77aa5424-8820-471e-912f-a93df0d8f671"/>
<resource id="0596caf9-483a-40c5-a2ab-5d7afc34c19b"/>
<resource id="b6fbd71d-1931-47d1-98f7-4a5aa940dbde"/>
<resource id="91c4a840-80e1-481b-b94d-785f52d995e8"/>
<resource id="20097233-b620-4e8a-831b-a6a55ca61857"/>
<resource id="774fd7df-7aa4-40ed-b0fc-769b8ed02997"/>
<resource id="566330f7-1101-49e7-a84e-e5fe448b4f41"/>
<responses>
<success-event/>
</responses>
<authn-scheme id="78e0e57f-b117-4814-b9bc-f4adc6b45d97"/>
</authn-policy>
<authn-policy id="66053e79-59ed-4f9b-9c28-f8167e87b685" description="Protected Internal Resources for OAM Server" name="OAM System Resource Policy" enabled="true" use-default-authn-scheme="false">
<resource id="b47def27-19e8-4f27-9b5b-1d7427db74cd"/>
<resource id="78cda7e8-896e-4fa6-8657-aef99cc4943f"/>
<resource id="af755820-76e2-4fea-8e91-326f47fdeb72"/>
<responses>
<success-event/>
</responses>
<authn-scheme id="78e0e57f-b117-4814-b9bc-f4adc6b45d97"/>
</authn-policy>
<authn-policy id="2d731793-d928-4689-affa-ebf076ff229f" description="Protected Authentication Policy for OAMAgent" name="Protected LowerLevel Policy" enabled="true" use-default-authn-scheme="false">
<resource id="f35eca52-4f70-41df-85f7-fdd1c2e80825"/>
<resource id="59fe4fbe-a1ee-4114-affe-cecbee765a65"/>
<responses>
<success-event/>
</responses>
<authn-scheme id="6f551746-6a3a-493e-be96-13bf89fe1983"/>
</authn-policy>
<authn-policy id="ccbd15c6-68cd-4276-9809-b64e8d7e6d13" description="Protected Authentication Policy for OAMAgent" name="Public Policy" enabled="true" use-default-authn-scheme="false">
<resource id="ffe98a79-6b42-4ad2-b237-6dc52b90d2b4"/>
<resource id="90fbc0ab-e9ae-4632-8dea-816bf5b8e01c"/>
<resource id="c945bed7-7f6b-4cca-bac2-7274a48325cb"/>
<resource id="ffce69e5-eab9-4cb2-98ba-bbe8101e68f3"/>
<resource id="7ff6c12e-6d60-4681-9137-a79347968c9b"/>
<resource id="d00dffaf-92d6-415a-a8f5-8e3211d5f969"/>
<resource id="f7d39709-9310-4185-9446-94ef97541be8"/>
<resource id="9e9fd6e9-b1ce-463e-baff-4efad5b65df8"/>
<resource id="f1905be3-9747-480e-86b4-642c08f83736"/>
<resource id="9ddcb572-1418-47bb-83e2-ad5d3e594740"/>
<resource id="99585771-02fa-4dba-a355-d0a870f2c169"/>
<resource id="7d8e8427-7beb-4aa9-b70a-f23d8f9f8d88"/>
<responses>
<success-event/>
</responses>
<authn-scheme id="f110b248-46c8-4a9c-819a-be077d98e457"/>
</authn-policy>
<authn-policy id="cb4ab409-3814-42ca-ba94-b5b3bb854ef2" description="TAP Response Protected Authentication Policy for OAMAgent" name="TAP Response Protected Policy" enabled="true" use-default-authn-scheme="false">
<resource id="2bbdfc2d-15f7-4c5b-9054-82dd0330ab25"/>
<responses>
<success-event/>
</responses>
<authn-scheme id="bf1ea190-dce4-4eda-82dc-64c1bcf7a462"/>
</authn-policy>
<authn-policy id="9672524f-8d07-44b7-afd9-d4fe9011c3e1" description="Federation SSO Protected Policy for SP Service" name="Federation SSO Protected Policy" enabled="true" use-default-authn-scheme="false">
<resource id="4891b64a-3d50-4583-8d88-df08869fd1eb"/>
<responses>
<success-event/>
</responses>
<authn-scheme id="1ddabb20-022a-48d1-b7f8-c0f140d0e668"/>
</authn-policy>
</authn-policies>
<authz-policies>
<authz-policy id="d81a9981-bd1f-484b-af3e-dcc2687f820c" description="Protected Authorization Policy for OIC Resources" name="OICAuthorizationPolicy" enabled="true" use-implied-constraints="false">
<resource id="ae617063-a04e-4da2-9b9a-9bf7aecace03"/>
<resource id="44222ee1-b220-4a09-ab6f-d9c0bac7698d"/>
<responses>
<success-event/>
</responses>
<conditions>
<condition description="This condition always evaluates to true." name="TRUE" type="TRUE"/>
</conditions>
<rules>
<rule effect="ALLOW">
<condition-combiner type="SIMPLE">
<simple combiner-mode="ALL">
<condition-name>TRUE</condition-name>
</simple>
</condition-combiner>
</rule>
</rules>
</authz-policy>
<authz-policy id="fab986a0-430d-409d-8ffe-69cc01fc4429" description="Protected Authorization Policy for OAMAgent" name="Protected Resource Policy" enabled="true" use-implied-constraints="false">
<resource id="11cb1d63-bafe-4660-9e24-a33d88e5601a"/>
<resource id="5a818e13-e658-4f08-b467-42addcb409e0"/>
<resource id="a8f823cc-a77b-420d-b44f-d3f71a04d0b9"/>
<resource id="9874af68-223c-4cfe-a830-c4d2224767c6"/>
<resource id="4943a221-8f99-4764-a4e6-d9e15a66879d"/>
<resource id="05326cfe-b7fa-447a-b351-b0c5108b2878"/>
<resource id="3c227ccd-3dcd-42fd-bafb-514f2e6ac173"/>
<resource id="787e1d3a-597f-4408-ac5f-6c4204297279"/>
<resource id="5f0fc46f-4a17-4653-8ebf-f1108d7450df"/>
<resource id="cf587b95-10a8-447d-a14d-5cae1fab22e9"/>
<resource id="c5193154-7e0f-4fc1-ba7c-3f7feffa409d"/>
<resource id="e2668409-886b-492c-8b31-3c5ea87ba125"/>
<resource id="c47e522a-3990-46db-ae02-f6e634845f06"/>
<resource id="211c739a-cf67-4319-9bab-dcf8f63d2507"/>
<resource id="4a2080da-2620-47d1-a009-7da94a81b39e"/>
<resource id="77aa5424-8820-471e-912f-a93df0d8f671"/>
<resource id="0596caf9-483a-40c5-a2ab-5d7afc34c19b"/>
<resource id="b6fbd71d-1931-47d1-98f7-4a5aa940dbde"/>
<resource id="91c4a840-80e1-481b-b94d-785f52d995e8"/>
<resource id="20097233-b620-4e8a-831b-a6a55ca61857"/>
<resource id="774fd7df-7aa4-40ed-b0fc-769b8ed02997"/>
<resource id="566330f7-1101-49e7-a84e-e5fe448b4f41"/>
<resource id="b47def27-19e8-4f27-9b5b-1d7427db74cd"/>
<resource id="78cda7e8-896e-4fa6-8657-aef99cc4943f"/>
<resource id="af755820-76e2-4fea-8e91-326f47fdeb72"/>
<resource id="f35eca52-4f70-41df-85f7-fdd1c2e80825"/>
<resource id="59fe4fbe-a1ee-4114-affe-cecbee765a65"/>
<resource id="ffe98a79-6b42-4ad2-b237-6dc52b90d2b4"/>
<resource id="90fbc0ab-e9ae-4632-8dea-816bf5b8e01c"/>
<resource id="c945bed7-7f6b-4cca-bac2-7274a48325cb"/>
<resource id="ffce69e5-eab9-4cb2-98ba-bbe8101e68f3"/>
<resource id="7ff6c12e-6d60-4681-9137-a79347968c9b"/>
<resource id="d00dffaf-92d6-415a-a8f5-8e3211d5f969"/>
<resource id="f7d39709-9310-4185-9446-94ef97541be8"/>
<resource id="9e9fd6e9-b1ce-463e-baff-4efad5b65df8"/>
<resource id="f1905be3-9747-480e-86b4-642c08f83736"/>
<resource id="9ddcb572-1418-47bb-83e2-ad5d3e594740"/>
<resource id="99585771-02fa-4dba-a355-d0a870f2c169"/>
<resource id="7d8e8427-7beb-4aa9-b70a-f23d8f9f8d88"/>
<resource id="2bbdfc2d-15f7-4c5b-9054-82dd0330ab25"/>
<resource id="4891b64a-3d50-4583-8d88-df08869fd1eb"/>
<responses>
<success-event/>
</responses>
<conditions>
<condition description="This condition always evaluates to true." name="TRUE" type="TRUE"/>
</conditions>
<rules>
<rule effect="ALLOW">
<condition-combiner type="SIMPLE">
<simple combiner-mode="ALL">
<condition-name>TRUE</condition-name>
</simple>
</condition-combiner>
</rule>
</rules>
</authz-policy>
</authz-policies>
</application-domain>
</application-domains>
<admin-policies>
<admin-scopes>
<admin-scope id="a4815e16-9fd9-44cb-a478-e425ece41d41" name="/" read-only="false">
<admin-roles>
<admin-role id="b29a8597-6880-472b-aa6c-4496a6a9fc34" description="System Administrator" name="System Administrator" read-only="false">
<members>
<identity type="GROUP" identifier="Administrators"/>
</members>
</admin-role>
<admin-role id="ab00e3b0-19f4-45c5-9503-a5094be9ba6c" description="Application Administrator" name="Application Administrator" read-only="false">
<members/>
</admin-role>
<admin-role id="22202bad-3633-4676-afc7-d4b56a0b2c52" description="System Viewer" name="System Viewer" read-only="false">
<members/>
</admin-role>
<admin-role id="74f08bd6-4b47-4546-ab59-da234a17f7ff" description="Help Desk Administrator" name="Help Desk Administrator" read-only="false">
<members/>
</admin-role>
<admin-role id="fc1fd7ab-4d7f-4a9b-8497-6be1544e51b3" description="Agent Administrator" name="Agent Administrator" read-only="false">
<members/>
</admin-role>
</admin-roles>
</admin-scope>
<admin-scope id="1baa46f9-9ea5-4f42-9d18-0dca1dd391aa" name="/appdomain/4839adb5-7689-4d3e-9c5b-3e602662eb14" read-only="false">
<admin-roles>
<admin-role id="01edff42-de7b-4422-a8ca-64e70b790fe3" description="Application Domain Administrator" name="Application Domain Administrator" read-only="false">
<members/>
</admin-role>
</admin-roles>
</admin-scope>
<admin-scope id="d8550f83-5168-4d5e-906b-43371b2518d4" name="/appdomain/61bfea31-9bd1-43c8-96a4-d67e3836f3cc" read-only="false">
<admin-roles>
<admin-role id="a825fd40-0687-4437-91bf-28fb4ed4b5ce" description="Application Domain Administrator" name="Application Domain Administrator" read-only="false">
<members/>
</admin-role>
</admin-roles>
</admin-scope>
</admin-scopes>
</admin-policies>
</oam-policy>
Free forum by Nabble Edit this page