<?xml version="1.0" encoding="UTF-8"?>
<roles-map>
<uaf-roles>
<role name="uaAgentAdmin" description="Agent administrator role" />
<role name="uaPluginAdmin" description="Plugin administrator role" />
<role name="uaOSAdmin" description="Operation system administrator role" />
<role name="uaASEAdmin" description="ASE administrator role" />
<role name="uaUser" description="User role" />
<role name="uaGuest" description="Guest role" />
<role name="uaAnonymous" description="Anonymous role" />
<role name="sccAdminRole" description="SCC Administrator Role" />
<role name="sccOperRole" description="SCC Operator Role" />
<role name="sccUserRole" description="SCC User Role" />
<role name="sccGuestRole" description="SCC Guest Role" />
<role name="jmxDirectAccess" description="JMX Direct Access Role" />
</uaf-roles>
<security-modules>
## The "name" attribute value must match the name specified in the csi.properties file.
<module name="SUP Delegation Login Module">
<role-mapping modRole="SUP Administrator" uafRole="uaAnonymous,uaAgentAdmin,uaPluginAdmin,sccAdminRole,sccUserRole,sccOperRole,sccGuestRole,jmxDirectAccess"/>
<role-mapping modRole="SUP Domain Administrator" uafRole="uaAnonymous,uaAgentAdmin,uaPluginAdmin,sccUserRole,sccOperRole,sccGuestRole,jmxDirectAccess"/>
</module>
<module name="Anonymous Login Module">
<role-mapping modRole="uaAnonymous" uafRole="uaAnonymous" />
</module>
</security-modules>
</roles-map>