Advanced Policy Manager

Today’s modern digital sites and applications – be they on web, mobile, or IoT devices – offer your customers a wide range of services and data. As a result, it’s not enough to simply authenticate your customers’ identities, you must also determine if they are authorized to use specific services or access certain data.

Advanced Policy Manager, which can be used with Janrain’s own and most other CIAM solutions, makes it easy and intuitive to define and administer access control for both technical and non-technical users, while allowing rules at a high level of granularity – across all of your sites, inside and outside your organization. Access policies for content behind your paywalls, restrictions for certain ages, user types, regions or similar criteria, can now easily and efficiently be defined, enforced and managed.

Decoupling access control from your applications reduces their attack surface and helps to improve security and prevent data breaches.

Features

Decision as a service

Decision as a service

Today, access authorization is typically fragmented and distributed across multiple functions within an enterprise, hard-coded into various local applications and implemented using a variety of non-standard techniques and technologies. This disjointed approach makes policy changes cumbersome, costly to implement, hard to document or audit and, most importantly, unsecure and error-prone.

With the Janrain Advanced Policy Manager, brands can easily create and manage business rules that define who is authorized to access a particular website, mobile application, IP-connected device or a specific resource or product, and under what conditions. For example, from one central point, companies can now control and govern the rules for consumer access to content behind paywalls and restrict access based on age group, user type, region or similar criteria.

Advanced Policy Manager provides a Policy Decision Point (PDP), which centralizes and streamlines access management. Our cloud-based decision as a service for authorization requests separates access control from the application stack, thereby reducing effort and cost in the development and maintenance process.

Easy, efficient access control

Easy, efficient access control

Janrain’s Console, our front-end user interface for business users, provides a powerful policy administration point (PAP) that enables easy management of authorization policies. This makes it quick and intuitive to define and administer access control for both technical and non-technical users, while allowing rules at any level of granularity.

Trust Frameworks

Trust Frameworks

Trust Frameworks provide a single, enterprise-wide view of your data and services ecosystem and the users who access it. This gives you a complete map of the “what” and the “who” in your user, data and services environment. As a result, there is a clear single source of truth for authorization logic, regardless of the number of policy information points (PIPs) involved., Demonstrate compliance in one single place, to align with regulatory requirements or industry standards, such as the General Data Protection Regulation (GDPR), Health Insurance Portability and Accountability Act (HIPAA), or Service Organizational Controls (SOC).

Authorization optimized for large scale and speed

Authorization optimized for large scale and speed

The Authorization Engine analyses each incoming access request and determines whether it should be accepted or denied, based on the business rules set up in the Advanced Policy Manager. Built for high performance and scalability, requests are evaluated in milliseconds, with no perceptible delay to the end user. The Authorization Engine logs every request (accepted or not) to give you a complete audit trail of access requests.

Centralized governance

Centralized governance

Our policy governance facility gives you visibility into policies, rules and access requests in one location. It establishes a central governance point for access management, centralized proof of compliance, and a valuable source of real-time intelligence for information security and business intelligence. This helps you to comply with regulatory requirements or industry standards, such as the General Data Protection Regulation (GDPR), Health Insurance Portability and Accountability Act (HIPAA), or Service Organizational Controls (SOC).

Advanced Policy Manager: Components

Policy Administration Point (PAP)

The Advanced Policy Manager is the front-end user interface for business users, providing a powerful policy administration point (PAP) and enabling easy management of authorization policies by non-technical users. Advanced Policy Manager lets you quickly create business rules to define who is authorized to access what resource, and under what conditions.

Policy Decision Point (PDP)

The Authorization Engine analyses each incoming access request and determines whether it should be accepted or denied, based on the business rules set up in the Advanced Policy Manager. Built for high performance and scalability, requests are evaluated in milliseconds, with no perceptible delay to the end user. The Authorization Engine logs every request (accepted or not) to give you a complete audit trail of access requests.

PDP Framework

The PDP Framework gives you visibility of policies, rules and access requests in one location, a complete view of who can access what and who has accessed what. It establishes a central governance point for access management using Advanced Policy Manager, centralized proof of compliance, and a valuable source of real-time intelligence for your information security functions, as well as for business intelligence.

Resources

Datasheet

Contact Us CIAM Buyer's Guide