External authorization service

External authorization capability is automatically built into the ISAM authorization service. Resource managers can use an external authorization service to provide a seamless experience. If we configure an external authorization service, the authorization service incorporates the access decision paths into its evaluation process. Resource managers such as WebSEAL benefit from the additional, seamless contribution of an external authorization service. Applications using the authorization API also benefit. Any addition to the security policy through an external authorization service is not apparent to these applications. The addition requires no change to the applications.

The external authorization service architecture provides the full integration of an existing security service. An external authorization service preserves your investment in security infrastructure by incorporating existing servers into the authorization decision-making process.

Parent topic: External authorization capability