Support Smarter Authorization
Add Context for Finer-Grained Authorization
Richness and precision matter when it comes to authorization. The more information you can rapidly access, the better you can secure your resources and offer new services.
The Challenge: Scattered Identity and Security Contexts Across Data Silos
However, user attributes are often spread across a heterogeneous mix of directories and databases, and scattered across data silos, schemas, and protocols. What worked in the past—centralized data—can no longer serve today’s far-flung, federated, and even cloud-based infrastructures. Without advanced cross-join and mapping through a virtualization layer, you face one-off customized code that’s hard to maintain and impedes the evolution of your portal.
The Solution: Get the Entire Picture through Virtualization and Joins
To provide up-to-the-minute, intelligent authorization, you need a coherent view of users, not an incomplete picture based on attributes scattered across multiple data sources. This means a complete profile, but also an understanding of how subjects are linked to activities and resources in their entirety. RadiantOne supports richer and smarter authorization decisions by integrating application contexts across data and application silos. With RadiantOne, application silos become a comprehensible set of interoperable contexts that your policy can tap into to deliver smarter authorization.
RadiantOne’s identity federation platform allows you to create an integrated view of identity, using join to extend user profiles with existing attributes and enabling complete attribute views and contextually-driven authorization decisions. Contextual views allows you to understand the relationships between identities and resources, no matter where or how that information is stored. Through object and relationship mapping, your authorization policies become more precise and fine-grained, and better reflect the entire entitlement picture.