Your portfolio trading customer is using Oracle Entitlements Server (OES) to externalize authorization decisions from their share dealing application.
The trading customer has stipulated the following policy need to be implemented:
- Customers can purchase shared only if their credit limit is 20% higher than the value of the shares in their basket at checkout.
The value of basket and a customer's credit limit are both available in the application, and can be passed to OES as part of an authorization request if required.
You are looking to implement the most efficient policy within OES. Which three steps would you implement?
A. Configure a Policy Information Point (PIP) to retrieve the basket value and credit limit from an internal system.
B. Configure an authorization policy to include a condition that executes a custom function.
C. Configure the application to include the basket value and credit limit in the authorization request.
D. Create a custom function to calculate the difference between the basket value and the credit limit.
E. Use a PIP to call a web service that returns the calculated difference between the basket value and the credit limit.
F. Return an obligation that contains the difference value so that the application can decide whether to allow the transaction or not.
Answer: BDF
Which statement is true about a single sign-on operation initiated from a Service Provider using SAML 2.0 in Oracle Identity Federation (OIF)?
A. Oracle Access Manager is required as a Service Provider integration module.
B. An Oracle Access Manager WebGate is needed to protect the target web resource and redirect requests to OIF.
C. HTTP post binding is only supported.
D. Any HTTP request hitting the target resource is redirected to the Service Provider's OIF instance.
Answer: A
No comments:
Post a Comment
Note: only a member of this blog may post a comment.