Axiomatics Policy Server
The Axiomatics Policy Server (APS) is a powerful access control system that allows users to manage, simulate and enforce fine-grained policies written in the eXtensible Access Control Markup Language (XACML).
The Axiomatics Policy Server (APS) provides a full-fledged, XACML-based authorization service. All components are managed from a central point, the Axiomatics Services Manager (ASM).
Via ASM, policies and configurations are distributed to the authorization services, PDPs, which are deployed, managed, and monitored via the management interface. Multiple authorization engines can be managed jointly in PDP Groups which share configuration and policies even if they are deployed across multiple machines. They thereby enabling flexible deployment modes for high availability.
ASM also provides centralilzed management of Attribute Aources, PIPs, with a graphical interface for configuration of LDAP and SQL connectors. Finally, ASM is also used for centralized management of an Attribute Dictionary which can be distributed to Policy Administration Points (PAP) used by policy authors.
APS conforms with XACML 3.0, and thus facilitates policy exchange across enterprises and with other XACML products. Its main components include:
- Axiomatics Servicse Manager (ASM)
- Policy Decision Point (PDP) – implementing XACML 3.0.
- Policy Administration Point (PAP) client – graphical user interface for creating and modifying XACML policies.
- Policy Retrieval Point (PRP) – database or file storage of XACML policies.
- Policy Enforcement Points (PEP) – agents, filters or interceptors that protect applications.
Axiomatics Policy Server 5.1 also introduces centralized management for the above components, the Axiomatics Services Manager (ASM). For details, see the Axiomatics Policy Server data sheet.