SecureSpan ManagerThe SecureSpan Manager provides a graphical environment for administering Layer 7's XML appliances and gateway software, creating, and validating XML and Web services policies. | |
Through an intuitive user interface, administrators can connect to shared services, establish trust and identity sources with existing infrastructure, and use these sources to define identity specific policies through a declarative policy language of security and SLA assertions. The SecureSpan Manager is available as either a standalone executable for Linux and Windows platforms, a browser-based interface for Firefox or Internet Explorer, or through a management API.
Policy EditingPolicies can be defined based on any combination of role, operation and content by dragging and dropping atomic policy elements from an expandable palette of assertions or by reusing fragments of other policies. Individual assertions can be combined sequentially or conditionally branched based on any message content, user defined context variables or previous policy execution. Event traps and audit trigger points can be inserted anywhere inside a policy for detailed logging or forwarding to external management and reporting applications. A built-in validation tool also flags potential policy errors or vulnerabilities and suggests changes during editing. Policy DeploymentPolicies are automatically saved and replicated across a SecureSpan cluster, to ensure consistent policy enforcement and provide real-time change management. Policies be imported from and published to external policy repositories and registries for runtime SOA governance applications. Policies can also be rolled back to previous versions or migrated between development, test, staging and production environments. The status of all active policies across a cluster can be also viewed in real time in the SecureSpan Manager, with real-time expectation reporting. Operational Management and ConfigurationThe SecureSpan Manger also manages the configuration of individual SecureSpan appliances and can be used to add or remove appliances from a SecureSpan cluster, manage internal key stores and certificates, securely backup appliance configurations, and establish connections with external identity, access management and federation systems. Role-based access controls can be applied to both policies and management operations, mirroring organizational responsibilities. Log and audit events captured during policy enforcement can viewed through the Manager, or forwarded to external sinks, network management or SOA management systems for forensic analysis, event correlation or reporting.
Share: | More | |
Search, View and Navigation
