Sharing

Use this page to configure the access policies for service providers that you have allowed access to your identity. web service policies are permission policies (query and modify) that govern how identity providers share your information with service providers. You can control whether private information is always allowed to be given, never allowed, or must be requested.

Attributes can be any piece of data about you, such as name, shipping address, phone number, employment status, and so on. Any selections you specify on this page are inherited by child policies. Depending on how your system administrator has set up profile sharing, you can override settings on specific attributes.

For example, a child attribute like Postal Address can inherit Ask Me permission from the parent Entire Personal Identity attribute. But if you never want to share your postal address, you can override the setting by specifying Never Allow.

To share:

  1. Click the name of the trusted service provider.

  2. On the All Service Policy page, click the check box next to the profile for the service provider, then click Edit Policy. Or, you can modify a child attribute by clicking the profile name.

    You can specify the following actions:

    • Modify: Allows the service provider to modify a particular attribute. This is similar to write access to a particular piece of data.

    • Query: Allows the service provider to query for the data on a particular attribute. This is similar to read access to a particular piece of data.

    • Query and Modify: Allows you to set both options at once.

    The Inherited column lists which settings are inherited from the parent attribute policy, when you view a child attribute. Settings displayed under Inherited are not modifiable. At the top-level policy, the values are inherited from the settings established by the system administrator.

  3. Specify one of the following permissions for Query and Modify actions:

    Ask Me: Requires the service provider to request what action to take.

    Always Allow: Requires the identity provider to always allow the attribute information to be sent to the service provider.

    Never Allow: Prevents a web service provider from viewing or obtaining an attribute of your profile from your identity provider.

  4. Click Save.

For trademark and copyright information, see Legal Notice.