|
security.manager - For the Management of Users and User Rights in Spatial Data Infrastructures
security.manager helps organisations manage access constraints with respect to services and data in service-based Spatial Data Infrastructures. It restricts access to authorised users, and provides extensive functionality that enables the implementation of fine-grained authorisation concepts.
security.manager provides protection against unauthorised access for OGC WMS, WFS, WFS-T, WCS, as well as Esri ArcGIS Server and ArcIMS services. Access constraints can be introduced either an the service function level or on the content (data) level. In addition, spatial authorisation serves to restrict functions and content to defined areas. By using the URL protection functionality, secured access to services, Web sites or Web applications can be provided.
Security interceptors are employed to check for authorisation to access geoservices. Thanks to the system's modular construction, these interceptors can be extended to allow for the incorporation of additional service types for protection by the security.manager.
For authentication, there are several options, from the commonly used "HTTP Basic Authentication" up to a SAML 2.0 based authentication. The latter supports user- federations and provides single-sign-on, also by use of the Windows login. User and policy management in the security.manager can be performed via a browser-based administrative interface. It is also possible to incorporate existing user management systems such as LDAP by simple configuration.
license.manager is the ideal addition to the security.manager. It provides the ability to allow users to electronically purchase commercial licenses for geoservices. security.manager and license.manager are available as a fully integrated bundle.
The modular structure security.manager, and its consistent compliance with IT standards, ensures that it is very easy to integrate into existing infrastructures and portals. As a result, security.manager is a highly integrable and expandable solution for controlling user constraints in service-based spatial data infrastructures.
The security.manager is available as a completely integrable ADD-On for "ArcGIS for INSPIRE".
User management |
Policy management |
|
