 |
Overview
The Policy Service provides cross-site authentication (Single Sign-on) user experience; utilizes Active Directory for user/role/profile repository; and guards application according to centralized authorization management at operation level of applications.
Security
Policy Service is provided through Web Page and Web Service. Any clients, including server side clients, can consume the service, although Policy Service Agent only works for the .NET applications.
Policy Service is built on Windows 2003 platform with Active Directory structure. The windows domain and the Active Directory domain should be in trust relation if they are not the same domain. This is due to the limitation of Authorization Management Console.
Policy Service needs .NET runtime installed on the server.
It is recommended that the web service and login page should be secured by SSL. Currently, the Policy Service is to be deployed within corporate network. In the future, the Policy Service should be able to be used by applications facing internet.
|
|
|
|
Next Steps
Policy Service Home
Related Products
Support and Training
|