Overview#

Identity Aware Proxy (IAP) is an Access Proxy that performs Access Control by Digital Identity. [1]

Identity Aware Proxys are simpler and safer than VPN and is a building block for BeyondCorp (see Access Proxy). The Identity Aware Proxy is a Policy Enforcement Point and a Single Sign-On Access Proxy

Authorization of a request requires the Identity Aware Proxy obtains data about the Digital Identity the user and the Digital Identity of the device making the request. In Policy Based Management System the data would be obtained from a Policy Information Point.

When using Google Cloud Platform there is no charge for using Identity Aware Proxy. However, when used with Google Compute Engine, the required Load Balancing and firewall configuration may incur additional costs.

Category#

Google Cloud Platform

More Information#

There might be more information for this subject on one of the following:

• API-Gateway
• Access Control Engine
• Access Proxy
• BeyondCorp
• Google Cloud Security
• IAP

---

• [#1] - Cloud Identity-Aware Proxy - based on information obtained 2017-08-15-