Certification checklist for application servers – RSA Security SILVERSTREAM 3.75 User Manual

Page 10

Advertising
background image

5. Certification Checklist for Application Servers

Date Tested: 01/31/02

Product

Tested Version

RSA ClearTrust

4.6.1.1

SilverStream eXtend Application Server

3.75 Developer Edition

WSI Module (agisapi.dll)

1.0

Microsoft Internet Information Server (IIS)

4.0

Test Case

Result

Web/Presentation

JSP

Access/Allow on unprotected JSP page

Pass

Access/Allow on protected JSP page (URL only) with entitled user

Pass

Access/Deny on protected JSP page (URL & Method) with entitled user on URL only

N/A

Access/Deny on protected JSP page (URL & Method) with entitled user on Method only

N/A

Access/Deny on protected JSP page (URL & Method) with entitled user on Method only

N/A

Access/Allow on protected JSP page (Method only) with entitled user

N/A

Access/Deny on protected JSP page (URL only) with unentitled user

Pass

Access/Deny on protected JSP page (URL & Method) with unentitled user on URL only

N/A

Access/Deny on protected JSP page (URL & Method) with unentitled user on Method only

N/A

Access/Deny on protected JSP page (URL & Method) with unentitled user on Method only

N/A

Access/Deny on protected JSP page (Method only) with unentitled user

N/A

Servlet

Access/Allow on unprotected Servlet

Pass

Access/Allow on protected Servlet (URL only) with entitled user

Pass

Access/Allow on protected Servlet (URL & Method) with entitled user

N/A

Access/Deny on protected Servlet (URL & Method) with entitled user on URL only

N/A

Access/Deny on protected Servlet (URL & Method) with entitled user on Method only

N/A

Access/Allow on protected Servlet (Method only) with entitled user

N/A

Access/Deny on protected Servlet (URL only) with unentitled user

Pass

Access/Deny on protected Servlet (URL & Method) with unentitled user

N/A

Access/Deny on protected Servlet (URL & Method) with unentitled user on URL only

N/A

Access/Deny on protected Servlet (URL & Method) with unentitled user on Method only

N/A

Access/Deny on protected Servlet (Method only) with unentitled user

N/A

Business Logic

EJB

Access/Allow on unprotected EJB

N/A

Access/Allow on protected EJB with entitled user

N/A

Access/Deny on protected EJB with unentitled user

N/A

MPR

*P=Pass or Yes F=Fail N/A=Non-available function

Page: 10

Advertising