Visual Guard
     
 

Visual Guard Architecture – Identity Federation

How to combine Identity Federation and Permission Based Access Control

The Visual Guard Identity Federation functions allow independent organizations to access the same system, while using Windows accounts to authenticate users:

  • Each organization manages their own Windows accounts, stored in Active Directory
  • In each organization, an administrator selects the Windows accounts that will have access to the system secured by Visual Guard
  • The users provide their Windows credentials to access the system

 

 More Information
securité s deploiement

Normally, the concept of identity federation is limited to user authentication. However, with Visual Guard, identity federation also includes management of user roles and permissions, and audit of actions performed by users and administrators:

  • When a distant user is authenticated, Visual Guard applies their permissions, controlling access to the application’s functionalities.
  • All operations performed by the users are logged in the Visual Guard repository.
  • In addition, all operations performed by administrators, such as the declaration of user accounts or assignment of roles and permissions, are logged in the Visual Guard repository.
  • Auditors can then review all these operations.
  
c s c

Web Front-end

Authenticate users with Windows Accounts defined in an independent Active Directory

 

Administrators use the VG Federation Client to browse their local Active Directory and select the Windows Accounts that will access the application.
The VG Federation Client calls the VG Server to declare these accounts in the VG Repository.
The administrator grants roles to users with the VG Administration Web Console.
When the user logs into the application, VG will authenticate them against the distant ID Store.
After the user logon, VG retrieves the user permissions for the Front-end and applies them.
When the front-end calls an application Web Service, VG checks that the user has access to this webservice, retrieves the user permissions for this web service and applies them.

Win Front-end

Authenticate users with Windows Accounts defined in an independant Active Directory

 

Administrators use the VG Federation Client to browse their local Active Directory and select the Windows Accounts that will have access to the application.
The VG Federation Client calls the VG Server to declare these accounts in the VG Repository.
The administrator grants roles to users with the VG Administration Web Console.
When the user logs into the application, VG will authenticate them against the distant ID Store.
After the user logon, VG retrieves the user permissions for the Windows front-end and applies them.
If the front-end calls an application Web Service, VG checks that the user has access to this webservice, retrieves the user permissions for this web service and applies them.
 
Other Solutions:
User Authentication, User Permissions, Identity Federation and Audit for PowerBuilder and .NET
Single Sign-On (SSO), Windows Authentication, integration with Active Directory and ADFS 2.0
Access Control for Silverlight, WCF, WPF, asp.net, Winform, Java and PowerBuilder applications
Protect your PowerBuilder code against reverse-engineering and powerbuilder decompiler
Localization and translation of PowerBuilder Projects
Code analyzer for Powerbuilder, PL/SQL , Sybase ASE TSQL, and SQL Server TSQL
Cross references, documentation tools and advanced code exploration
PowerBuilder to web migration tools. Use the productivity of PowerBuilder for Web developments
Web-deployment: Convert PowerBuilder to .Net or Convert PowerBuilder to Java
Let users make changes in PowerBuilder applications for customization purposes
Let end-users customize or update a PowerBuilder application. No development skill required

Other Products:
Visual Guard - PowerBuilder and .Net Security
Visual Expert - Maintenance of PowerBuilder applications
Enable - localization and translation of PowerBuilder Projects
Appeon - PowerBuilder to web deployment
Customization Studio - Let non-developers customize PowerBuilder apps

Other Resources:
Novalys - PowerBuilder and .NET Companion Tools
PowerBuilderTV - PowerBuilder Webcasts
Worldwide PowerBuilder Survey