Enforce AuthZ Policies with ForgeRock Identity Gateway (IG)

In this article, we’ll see how to enforce Authorization (Auth-Z) configured in Access Management through an agent-less product offered by ForgeRock called Identity Gateway (IG). IG is essentially a reverse proxy with specialized session management and credentials replay functionality. IG in this example will be our Policy Enforcement Point (PEP) and AM will act as a Policy Decision Point (PDP).

IG and AM Demonstration