Features

TIBCO ActiveMatrix Policy Director Governance provides uniform cross-domain governance for TIBCO as well as non-TIBCO application platforms.

You can define a single policy in TIBCO ActiveMatrix Policy Director Governance and enforce it uniformly for the services running on TIBCO ActiveMatrix Service Grid and in the case of SOAP, other application platforms too.

Embedded governance agents

By running in the same Java Virtual Machine as a TIBCO ActiveMatrix Service Grid node, embedded governance agents enforce security and other policies to provide last-mile security for SOAP and REST services. Last-mile security protects messages delivered to your service up to the point where TIBCO ActiveMatrix Service Grid application consumes them.

Intermediary proxies

Intermediary proxies hide internal endpoints behind a firewall and expose proxy endpoints to external clients. The TIBCO ActiveMatrix Policy Director Governance proxy applications run on the TIBCO ActiveMatrix Service Grid nodes with embedded governance agents. You can enforce policies on these proxies the same way as you would on your internal TIBCO ActiveMatrix Service Grid applications.
Note: Embedded governance agents are not available for other application platforms. Therefore, TIBCO ActiveMatrix Policy Director Governance proxies are the solution to enforce policies uniformly on your external SOAP services.

You can use TIBCO ActiveMatrix Policy Director Governance to create intermediary proxies to TIBCO ActiveMatrix Service Grid.

Policy enforcement

Using both embedded agents and intermediary proxy applications, TIBCO ActiveMatrix Policy Director Governance can inspect, reject, log, transform, and redirect messages. Utilizing these capabilities TIBCO ActiveMatrix Policy Director Governance can enforce a broad range of policies.

You can perform the following actions with TIBCO ActiveMatrix Policy Director Governance:

  • Discover services running in TIBCO ActiveMatrix Service Grid nodes.
  • Register Web Services Description Language (WSDL) for the SOAP services running in any platform and create proxies for them.
  • Create object groups of services or partner references using fixed membership or dynamic criteria. These groups are used as the targets for policies.
  • Define resources such as LDAP, Keystores, and HTTP connections for use in policies.
  • Define polices (known as Governance Controls in TIBCO ActiveMatrix Policy Director Governance) and deploy them to TIBCO ActiveMatrix Service Grid nodes for uniform policy enforcement.

You can complete Governance Control configurations such as an update to an authorization policy or a keystore password, in TIBCO ActiveMatrix Policy Director Governance and redeploy them to all runtime processes without updating an individual process or machine.

Administration

TIBCO ActiveMatrix Policy Director Governance includes TIBCO ActiveMatrix Administrator, a graphical user interface for performing all of the prior tasks. It also has a comprehensive command-line interface for performing the same tasks.