This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthor

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Page revision history

Version Date Modified Size Author Changes ... Change note

Page References

Incoming links Outgoing links
Access Control Engine
Access Control Engine

Version management

Difference between version and

At line 1 added 17 lines
!!! Overview
[{$pagename}] is a [Access Control Service] and [Policy Decision Point].
!! [{$pagename}] [BeyondCorp]
[{$pagename}] [service] referenced by each [Access Proxy] ([Identity Aware Proxy]) that provides a [binary] [authorization] decision based on the [Access Control Policy], output of the [Trust Inferer], the [Resource Inventory Service] [Entity] requested, and real-time [credentials].
[{$pagename}] is within the [Access Proxy] provides service-level [authorization] to enterprise applications on a per-request basis. The [authorization] decision makes [assertions] about the [user], the [groups] to which the user belongs, the device [certificate], and artifacts of the [device] from the [Device Inventory Service].
If necessary, the [{$pagename}] can also enforce [Geolocation] [Access Control]. The inferred [Trust Tier] in the [Digital Identity] and the [device] is also included in the [authorization] decision.
For example, access to Google’s bug tracking system can be restricted to full-time engineers using an engineering device. Access to a [financial] [application] can be restricted to fulltime and part-time employees in the [financial] operations group using managed non-engineering devices.
[{$pagename}] can also restrict parts of an application in different ways. For example, viewing an entry in our bug tracking system might require less strict access control than updating or searching the same bug tracking system.
!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthorTop