Activation level overview
Each activation level on the ISAM appliance offers different features. Consider the needs of the environment to determine which activation levels we require.
- Security Verify Access Supporting Components: No activation key is required
- The Supporting Components provide:
- Appliance management: local management interface and REST APIs
- Policy Server
- Embedded LDAP server
- Authorization Server
- Security Verify Access Platform: Activation key is required
- The IBM Security Verify Access Platform secures web applications. To use the web security features, we must activate the ISAM Platform. This activation level includes the following key components:
- web reverse proxy
- web reverse proxy is a high performance, multi-threaded Web server that applies fine-grained security policy to the IBM Security Verify Access protected web object space. web reverse proxy can provide single sign-on solutions and incorporate back-end web application server resources into its security policy.
- Front-end load balancer
- Optimizes resource use and ensures high availability of services. The front-end load balancer accepts requests from clients and determines which backend server is the most suitable to handle the request. It forwards each request to the appropriate server. The front-end load balancer provides persistence for existing sessions.
- Web application firewall
- Helps protect your web servers from malicious traffic and blocks attempts to compromise the system.
- Distributed session cache
- Maintains session state in clustered server environments.
- Advanced Access Control Module: Activation key is required
- The Advanced Access Control Module secures mobile transactions. This activation level includes
features, such as:
- Context-based access and an authentication service framework
- Provides enhanced authentication assurance, context-based access control, and protection from web-based threats.
- API protection
- Uses the OAuth protocol, which provides API protection for native mobile and other API-based applications.
- Device fingerprinting and registration
- Stores the device fingerprint of the user in the context-based access database.
To activate this module, we must first activate the IBM Security Verify Access Platform offering.
- Federation Module: Activation key is required
- The Federation Module provides support for the SAML 2.0 and OpenID Connect protocols.
To activate this module, we must first activate the IBM Security Verify Access Platform offering.
Figure 1 summarizes the key features and product activation levels.
Parent topic: Overview