Accessibility Mode for the Administrative UI

This product can be configured for accessibility. Follow these steps:
casso10
This product can be configured for accessibility. Follow these steps:
2
Log in to the Administrative UI
casso10
Open the Administrative UI to change objects on your Policy Server.
Note the following issues:
  • The first time that you launch an Administrative UI over SSL, the browser warns that the security certificate is not issued by a trusted company. This warning relates to a self-signed certificate that is generated during SSL registration. Approve the certificate and proceed.
  • The Administrative UI requires that you enable Javascript in the browser. If you use IE 11 to access the Administrative UI, you may see a message that the website content is blocked. From this message, add the Administrative UI as a trusted site, where Javascript is enabled by default. If you clear the check box that prompts you about blocked content, you can log in to the UI but it does not render correctly until you enable Javascript. Enable Javascript for the security zone that the UI is in or add the UI as a trusted site. To add a trusted site, begin at the IE menu and select Tools, Internet Options. From the Security tab, select Trusted Sites and add the UI.
 
Follow these steps:
 
  1. Open a web browser.
  2. Enter the location of the Administrative UI using the following guidelines:
    • If the Administrative UI was installed using the standalone option and the Administrative UI was registered over SSL, go to the following location:
      https://
      host.domain
      :8443/iam/siteminder/adminui
    • If the Administrative UI was installed using the standalone option and the Administrative UI was not registered over SSL, go to the following location:
      http://
      host.domain
      :8080/iam/siteminder/adminui
      Where,
      host
       
       
      specifies the name of the Administrative UI host system.
      domain s
      pecifies the fully qualified domain name of the Administrative UI host system.
      port s
      pecifies the port on which the application server listens for requests.
  3. Enter the administrator credentials.
  4. Click Login.
    The contents of this window differs based on the privileges of the administrator account you use to log in to the Administrative UI.
Pick an Administrator Type
Any type of administrators can be configured to use the accessibility mode. However, to create administrators, an external database must be configured first.
Pick
one
of the following administrator types for which you want to configure the accessibility mode:
  • Administrator
    The administrators who have their accounts and credentials that are stored in an external third-party database outside of the product.
  • Legacy Administrator
    The legacy administrators who have their accounts and credentials that are stored inside the policy store.
Create an Administrator
You create a legacy administrator in the Administrative UI. This legacy administrator uses the accessibility mode of the product.
Follow these steps:
  1. Select Administration, Administrator.
  2. Select Administrators.
  3. Select Create Administrator.
  4. Select Lookup under General.
  5. Specify search criteria and Select Search.
  6. Select the administrator that you want and pick Select.
  7. Select Submit.
  8. Configure the accessibility mode for this administrator.
Create a Legacy Administrator
You create a legacy administrator in the Administrative UI. This legacy administrator uses the accessibility mode of the product.
Follow these steps:
  1. From the Administrative UI, select Administration, Administrator, Legacy Administrators.
  2. Select Create Legacy Administrator.
  3. Verify that the following option button is selected:
    Create a new object of type Legacy Administrator
  4. Select OK.
  5. Select the Name field, and then enter a user name of the Legacy Administrator.
  6. Verify that the following option button is selected:
    SiteMinder database
  7. Select the Password field and type a password for the Legacy Administrator.
  8. Select the Confirm Password and type the same password that you used in Step 7.
  9. Select the following option button:
    System
  10. Select Submit.
  11. Configure the accessibility mode for this administrator.
Configure the Accessibility Mode for the Administrator
Configure the accessibility mode for the administrator after creating it.
Follow these steps:
  1. From the Administrative UI, select Administration, Administrator, Administrators.
  2. Select the edit icon to the right of the legacy administrator to which you want to configure the accessibility mode.
  3. Select the following check box:
    GUI Allowed
  4. Select Add.
  5. Configure the accessibility mode by doing the following steps:
    1. On the Create Permission screen, select the check boxes of the items that are shown in the Security Category column of the following table.
    2. After all of the check boxes corresponding to the Security Category column are selected, select OK.
    3. Select the check boxes for the permissions columns (V, M, and X) as shown in the following table.
  6. Select Submit.
    The accessibility mode is configured and a confirmation message appears. Any administrators who require the accessibility mode can use this administrator account to access the Administrative UI.
Security Category
V
M
X
B
R
P
Admin Administration
X
X
 
 
 
 
Agent Administration
X
X
 
 
 
 
Agent Type Administration
X
X
 
 
 
 
Application Administration
X
X
 
 
 
 
Application Role Administration
X
X
 
 
 
 
Authentication Administration
X
X
 
 
 
 
Directory Administration
X
X
 
 
 
 
Domain Administration
X
X
 
 
 
 
Expression Administration
X
X
 
 
 
 
Global Policy Administration
X
X
 
 
 
 
Host Administration
X
X
 
 
 
 
Legacy Domain Administration
X
X
 
 
 
 
Mapping Administration
X
X
 
 
 
 
Password Policy Administration
X
X
 
 
 
 
Policy Administration
X
X
 
 
 
 
Report: Activity by User
 
 
X
 
 
 
Report: Admin Operations
 
 
X
 
 
 
Report: Applications
 
 
X
 
 
 
Report: Applications by User
 
 
X
 
 
 
Report: Denied Authorizations
 
 
X
 
 
 
Report: Denied Resources
 
 
X
 
 
 
Report: Policy by Role
 
 
X
 
 
 
Report: Protected Resources
 
 
X
 
 
 
Report: Resource Activity
 
 
X
 
 
 
Report: Resources by User
 
 
X
 
 
 
Report: Roles by Application
 
 
X
 
 
 
Report: Roles by Resource
 
 
X
 
 
 
Report: Users by Resource
 
 
X
 
 
 
Report: Users by Role
 
 
X
 
 
 
User Administration
X
X
 
 
 
 
Variable Administration
X
X