Question :
Running AdminUI, when I try to modify an "OnAuthAttempt" Resource value Rule,
the AdminUI shows the value greyed, and I cannot modify the value. Why ?
Environment :
Policy Server 12.52SP1CR04 on SunOS 5.10;
AdminUI and pre-req 12.52SP1CR04 on SunOS 5.10;
Answer :
The behavior is by design.
When you define a OnAuth event, then the rule applies to
the "all" realm, not just on the rule resource. And that's
why you see it grayed.
See the documentation :
Authentication events occur when a user accesses a resource
that is protected by a rule with an OnAuth event. The Policy
Server fires the rule during the authentication process. Unlike
Web Agent actions or authorization events, authentication events
always apply to the entire realm. You cannot create an OnAuth rule
that applies to a portion of a realm.
https://docops.ca.com/ca-single-sign-on-12-52-sp1/en/configuring/policy-server-configuration/rules/rules-overview
KD : TEC1640245