Novell Access Manager 3.0 SP4 Administration Guide

This guide describes the features of Novell® Access Manager, including:

This administration guide is intended to help you understand and configure all of the features provided by Access Manager, and includes advanced topics.

It is recommended that you first become familiar with the information in the Novell Access Manager 3.0 SP4 Setup Guide, which helps you understand how to perform a basic Identity Server configuration, set up a resource protected by an Access Gateway, and configure SSL.

The basic setup and the administration guides are designed to work together, and important information and setup steps are not necessarily repeated in both places.


This guide is intended for Access Manager administrators. It is assumed that you have knowledge of evolving Internet protocols, such as:


We want to hear your comments and suggestions about this guide and the other documentation included with this product. Please use the User Comments feature at the bottom of each page of the online documentation, or go to Documentation Feedback at and enter your comments there.

Documentation Updates

For the most recent version of the Access Manager Administration Guide, visit the Novell Access Manager Documentation Web site.

Additional Documentation

Before proceeding, you should be familiar with the Novell Access Manager 3.0 SP4 Installation Guide and the Novell Access Manager 3.0 SP4 Setup Guide, which provides information about setting up the Access Manager system.

If you are unfamiliar with SAML 1.1, see SAML Overview on the Documentation Web site.

For conceptual information about Liberty, and to learn about what is new for SAML 2.0, see Section A.0, About Liberty.

Documentation Conventions

In Novell documentation, a greater-than symbol (>) is used to separate actions within a step and items in a cross-reference path.

A trademark symbol (®, ™, etc.) denotes a Novell trademark. An asterisk (*) denotes a third-party trademark.

When a single pathname can be written with a backslash for some platforms or a forward slash for other platforms, the pathname is presented with a backslash. Users of platforms that require a forward slash, such as Linux* or UNIX*, should use forward slashes as required by your software.