Centralize Policy Evaluation and Auditing
Cisco Policy Decision Point (PDP) provides run-time resolution of role-based and rule-based authorization policies. It typically distributes the decision points in a high availability configuration and can run on the same server as the application it is protecting.
- High-performance resolution of role-based and rule-based policies and management of distributed decision caches
- Snap-on integration with user information repositories (Lightweight Directory Access Protocol [LDAP], Active Directory) and existing identity management solutions
- Flexibility in deploying the decision points to be local or remote to the resources for which they resolve entitlement policies
- Standards-based with native support for Extensible Access Control Markup Language (XACML), Simple Object Access Protocol (SOAP), and Security Assertion Markup Language (SAML).