The SMAPI also includes a SubjectManagement API that allows all users to update their own user information, removing the burden from the security officer, who historically had to register all users and make all changes to a user account.
All users can update user information in their own account. However, they cannot delete the account entirely; the security officer must delete any unwanted or unused accounts.
User authentication information is stored in the ACDB, a JDBC-compliant database that is configured by default when you configure Sybase Enterprise Security. The default implementation of the SubjectManagement API in the SMAPI supports access to and modification of data in the ACDB. If you use a different data store to store authentication and authorization information, you must write and deploy your own implementation of SubjectManagement.
To implement the subject management feature, you must develop and deploy your own EJB client that calls the Enterprise Security SubjectManagement API.
| Copyright © 2005. Sybase Inc. All rights reserved. |
|
|
