A Brief on the Role of the Axway APIGW in ABAC
Short, sweet, and to the point. Less than 500 words that talks about the role of an API Gateway in ABAC security, and how things can tie together or be orchestrated. Enjoy! The Axway API Gateway (APIGW) has the ability to act as many roles regarding the components of ABAC security. While generally not used for the actual IDP (identity provider) portion, it does have capabilities around user generation and attribute storage. Generally the Axway APIGW will be used to connect to one or more IDPs, such as LDAP, AD, Siteminder, OAM, etc. When a user attempts to access a resource, the APIGW will authenticate the user against the appropriate IDP, which can be chosen contextually by things such as IP, URI, service invoked, digital channel [ie mobile], etc. After successful authentication, the APIGW will gather attributes from the IDP and any other sources such as attribute servers, user credential (such as a PKI credential with OU and the like), or microservices to build out a profile for