94 Certification Study Guide: IBM Tivoli Access Manager for e-business 6.0
other hand, are configured into an Access Manager domain by specifying the
domain name during the configuration of the Java application.
4.1.2 Protected object space
Tivoli Access Manager represents resources within a domain using a virtual
representation called the
protected object space. The protected object space is
the logical and hierarchical portrayal of resources belonging to a domain.
The protected object space consists of two types of objects:
Resource objects Resource objects are the logical representation of actual
physical resources, such as files, services, Web
resources, message queues, and so on, in a domain.
Container objects Container objects are structural components that enable
you to group resource objects hierarchically into distinct
Security policy can be applied to both types of objects. Figure 4-1 shows a logical
representation of a protected object space with multiple container and resource
Figure 4-1 Access Manager protected object space
The structural top, or start, of the protected object space is the root container
object, which is represented by a forward slash (/) character. Below the root
container object are one or more container objects. Each container object
Web ObjectsManagement Custom
index.htmlcgi-bin ledger reports
1.html 2.html 3.html