■
Number of successful authentications
■
Number of failed authentications
■
Number of successful logout operations
■
Number of failed logout operations
■
Transaction time for each module if possible (running and waiting states)
2. Sessions
■
Size of the session table (hence maximum number of sessions)
■
Number of active sessions (incremental counter)
3. Prole Service
■
Maximum cache size
■
Transaction time for operations (running and waiting)
4. Policy
■
Policy evaluation in and out requests
■
Policy connection pool statistics for the subject's plug-in's LDAP server
Authentication module
■
Distributed Authentication service not required to stick to one server for load-balanced
deployments
■
Authentication service and server not required to stick to one server for load—balanced
deployments
■
Composite advices support among Authentication service, Policy Agents, and Policy
service. Includes AuthenticateToRealm condition, AuthenticateToService condition, and
realm qualication to all conditions.
■
Advising organization (realm qualied Authentication conditions)
■
Authentication congurations / authentication chains (AuthServiceCondition)
■
Module-based authentication can now be disallowed if Authentication chaining is enforced
■
Distributed Authentication service supports Certicate authentication module
■
Added CertAuth to Distributed Authentication UI to make it a full featured credential
extractor presentation
■
New Datastore authentication module as an out-of-box module which authenticates against
the congured datastore for a given realm
■
Account lockout conguration now persistent across multiple AM server instances
■
Chaining of post-processing SPI classes
Policy module
■
A new policy condition AuthenticateToServiceCondition added, to enforce the user is
authenticated to specifc authentication service chain.
What’sNewinThisRelease
SunJavaSystemAccessManager 7.1ReleaseNotes • March20078