Policy Server Configuration

This section describes how to configure Policy Server infrastructure and policy objects to define security policies for web application resources.
sm1252sp1
This section describes how to configure Policy Server infrastructure and policy objects to define security policies for web application resources.
Configure Policy Server Settings
From the Policy Server Management Console Settings tab, you can to configure a number of general settings that determine the way the Policy Server behaves.
Follow these steps:
  1. Start the Policy Server Management Console.
    sm1252sp1
    On Windows Server, if User Account Control (UAC) is enabled open the shortcut with Administrator permissions. Use Administrator permissions even if you are logged in to the system as an Administrator. For more information, see the release notes for your
    CA Single Sign-On
    component.
  2. Click the Settings tab.
  3. Adjust the desired settings.
  4. When you have finished, click Apply to save your settings, or click OK to save the settings and exit the Management Console.
Configure TCP Ports for Access Control
The Policy Server uses three separate TCP ports to communicate with  Agents for authentication, authorization, and accounting.
To enable or disable these Agent communication ports, as well as change the TCP port numbers used for each function, use the controls in the Access Control group box on the Management Console Settings tab.
Configure Policy Server Administration Settings
The Policy Server uses a TCP port to communicate with the Administrative UI to allow browser-based policy management.
To enable or disable and change the TCP port number used to communicate with the Administrative UI, as well as specifying a timeout value for administrative inactivity, use the controls in the Administration group box on the Management Console Settings tab.
Configure Policy Server Connection Options
To specify the maximum number of Policy Server threads, and the idle timeout for a connection to the Policy Server, use the controls in the Connection Options group box on the Management Console Settings tab.
Configure Policy Server Performance Settings
To configure cache and thread settings to tune Policy Server performance, use the Performance group box on the Management Console Settings tab.
Configure RADIUS Settings
To specify settings to enable support of RADIUS components in your deployment, use the RADIUS group box on the Management Console Settings tab.
Configure OneView Monitor Settings
By default the OneView Monitor runs locally on the Policy Server that it is monitoring.
To configure the monitor to accept connections from other Policy Servers to be monitored remotely or to specify a central remote Policy Server that is to monitor all Policy Servers in a cluster, use the OneView Monitor group box on the Management Console Settings tab.