Access Policy Management
Integrating all aspects of an Identity and Access Management into a single, cohesive and integrated policy delivers significant security, scale and auditing benefits to an organisation. By using the core technologies in the PortWise Access Manager, a rich access control policy can be created which adaptively grants granular application and data resource access based on the security of the users workspace.
Access decisions are not just simple "allow entry" or "deny entry" policies, but should reflect a number of different characteristics for access control. PortWise Access Manager features a sophisticated access policy engine to determine what resources a user should have access to at any given time. Access policies can be applied on a granular level, to control access to networks, applications, IP/port sets, and even specific URLs. Access policies may be based on a number of different characteristics, including:
- End-Point Security
Grants access based on the type and security status of the user's device. - Authentication Level
Grants access based on authentication level, e.g. two-factor or one-factor. - User Role
Grants access based on who the user is (e.g. marketing, sales, engineering, employee, partner or customer). PortWise Access Manager integrates with existing user storages for seamless propagation of accounts and user rights. - Network
Grants access based on if the network is trusted or not. - Point of Entry
Grants access based on which PortWise Access Point is used (e.g. London, New York, Tokyo). - Identity Federation
Grants access based on an external identity provider.