HP OpenView Select Access is an authorisation management product utilising an XML-based architecture that provides a Privilege Management Infrastructure (PMI), allowing the administration and enforcement of user privileges and transaction entitlements to enterprise resources in a distributed environment.
HP OpenView Select Access integrates with Web and Java2 Enterprise (J2EE) application servers. All HP OpenView Select Access policies are stored and accessed directly using LDAP to a range of directory servers.
HP OpenView Select Access provides a centralised user, resource and policy management capability. Authorisation rules may be defined down to the URL, object or transaction level. Authorisation decisions are based on role-based identities. A policy inheritance scheme exists for users and resource groups, which reduces management overhead.
Authentication support is provided for multiple techniques including passwords and X.509 certificates. Secure session-based credentials are created and maintained by HP OpenView Select Access to allow users a “single sign-on like” capability.
A browser-based administration interface is provided to centrally administer and configure all of the distributed components of HP OpenView Select Access. Support is also provided for multi-level delegated administration to provide users with the capability to administer groups of users and/or resources for which they are responsible.
The HP OpenView Select Access Secure Audit Server consolidates runtime and policy administration logs with digitally signed entries to ensure the integrity of audit data stored.