Enterprise Wide Authorization

Traditionally, enterprise applications provide individual proprietary mechanisms to for access control configuration and enforcement. Some identity management solutions have attempted to automate access control enforcement by adopting support for the proprietary application specific mechanisms, or introducing a proprietary mechanism of their own.

XACML (eXtensible Access Control Markup Language) is being widely adopted as the standardised technology required to deliver a centralised authorisation service. XACML offers a standardised mechanism for describing security policies and a way for applications to externalize their access control decisions.

Related Products

ViewDS

ViewDS Access Sentinel is an XACMLv3 policy server, which has been built upon the ViewDS directory server technology. ViewDS Access Sentinel uniquely offers a consolidated XACML policy store, policy decision server and policy information server, unlike other XACML solutions which require a policy server, plus a database, plus an LDAP directory.

ViewDS Access Sentinel offers organizations to centralise the control of authorisation for a number of enterprise applications; making authorisation easier to control, manage and audit. The next release of ViewDS Access Sentinel will focus on the protection of web site access through the supply of IIS and Apache policy enforcement plugins.