There are lots out-of -boxes solution available for Authentication, Authorization and Accounting. Every company is trying to add “Fine grain” access management salutation on their product suits.
Entitlement say if you are a authenticated user, then are you entitled to do certain action over enterprises resource?
This is granular entitlement applied on web pages objects. Webpage button, edit field , every item and data which is visible on internet browser can be consider as object . This could be applied on whole application, a single page on website or on data in the database table. It is entirely depended on how business wanted to view data to customer, partner and internal user. There are many instances you can see on corporate web site that you are not able to click button.
This is due to simple reason and its all due to policy matter.
Cisco has come up with a entitlement solution called the Cisco Entitlement policy manager. This is simple to install over the existing Network Environment. It requires a J2EE based Application server .There are application server available as Web logic, Web sphere and Tomcat. Then it requires a Database server. It could be a Oracle server or MS-SQL server. In Majority Oracle 10 g database is use. This database store organizational policy.
There basic component require to run entitlement, Policy, Decision and Enforcement. CISCO policy manager has 3 main components called PDP , PEP and PAP as follows ,
PAP – Policy administration point
PDP – Policy decision point
PEP – Policy enforcement point
PAP is as Web based user interface user for creation of Entitlement Policy. PDP is the key decision point. It will take input from the Policy available in the Oracle database and based on this it send its decision. Policy Enforcement point is always integrated with the Application which need to protect. It works as request interceptor or work as web agent , get response from the PDP.
Hope this will provide you some information how entitlement works … I will be glad to have feedback on this .
skip to main |
skip to sidebar
OM Ganesh Namha
Jai Ganesh
OM Ganesh Namha
About Me
- Dada... a simpe dude!!!
- 14 yes of IT Experience. Since 5 Years working on Identity and Access management space. Worked for Integration, Implementation and deployment. Presently working AS Consultant.
No comments:
Post a Comment