Sun Java System Access Manager (Access Manager) integrates authentication and authorization services, policy agents, and identity federation to provide a comprehensive solution for protecting network resources. Access Manager prevents unauthorized access to web service applications and web content, providing an infrastructure for organizations to manage the digital identities of customers, employees, and partners who use their web-based services and non-web applications. Because these resources might be distributed across a range of internal and external computing networks, the attributes, policies, and entitlements are defined and applied to each identity to manage access to these technologies.
Access Manager includes the following subcomponents:
Access Manager Core Services. Provides the means for creating and managing user identities and for defining and evaluating policies that provide access to Java ES resources based on user identities.
Access Manager Administration Console. Consolidates identity services and policy management and provides a single graphical interface for users to create and manage user accounts, service attributes, and access rules in the Directory Server.
Common Domain Services for Federation Management. Enables users to use a single identity to access applications offered by multiple affiliated service providers.
Access Manager SDK. Provides a remote interface to Access Manager. This subcomponent must be installed on any computer hosting a Java ES component that accesses Access Manager remotely.
Access Manager Distributed Authentication User Interface. Provides a user interface that enables a policy agent or an application that is deployed in an unsecured area to communicate with the Access Manager Authentication Service that is installed in a secured area of the deployment.
Access Manager Client SDK. Enables users to implement stand-alone applications that can access an Access Manager server to use services such as authentication, single sign-on, authorization, auditing, logging, and Security Assertion Markup Language (SAML).
Access Manager Session Failover Client. Required to configure Access Manager session failover.