TIBCO AMX Policy Director. Notes

With TIBCO ActiveMatrix Policy Director you can do the following:

• Manage services deployed using TIBCO ActiveMatrix BusinessWorks software
• Use proxy applications to manage services deployed outside of TIBCO ActiveMatrix BusinessWorks
environments.

Governance Controls

TIBCO ActiveMatrix Policy Director provides governance control with runtime policies, policy templates, a distribution engine, and governed object groups.


Policies: Authentication, Authorization, Encryption, Credential Mapping, Log Faults

Policy templates (Governance Control Templates). Encapsulates a common behavioral pattern,
such as authenticating user names and passwords against LDAP. Types:

• Authentication.
• Authorization.
• Logging.
• Messaging. Messaging policies define how messages are sent and received.

Distribution Engine. During runtime the TIBCO ActiveMatrix Policy Director distribution engine distributes policies to nodes or TIBCO ActiveMatrix Policy Director engines, tracks governance control deployment status, and performs correction redeployment as needed.


The distribution engine handles four policy life cycle events: Deployment, Undeployment, Deactivate, Activate.


Object Groups: user-defined set of governed objects of the same type (hosts, services, references, applications, and machines) to manage and use them as a unit during runtime.
Use an object group to combine governed objects that have the same governance requirements and to apply the same policies to that group.

Proxy Service Management

TIBCO ActiveMatrix Policy Director allows you to create proxies for services managed in external containerssuch as TIBCO ActiveMatrix BusinessWorks, WebSphere Application Server, and Windows Communication Foundation (WCF).

Proxy Applications

A proxy application is an intermediary that enforces policies on behalf of a consumer or provider.
You use TIBCO ActiveMatrix Policy Director Proxy Agent to manage proxy applications.

Proxy Nodes

A proxy node consists of resources for deploying proxy applications. The proxy node is a standard ActiveMatrix
node with three added capabilities:
• The Mediation IT (implementation type) is deployed and runs on the node to execute the mediation
application. The mediation application functions as the proxy application to the external service.
• At least one connector shared resource provides a functional endpoint for the promoted service of the
mediation application.
• At least one client shared resource allows the mediation application to reference the external service.

Policy Enforcement

Through both embedded agents and intermediary proxy applications, TIBCO ActiveMatrix Policy Director can enforce a range of policies by inspecting, rejecting, recording, transforming and redirecting messages.

You can create object groups that include proxy and TIBCO ActiveMatrix BusinessWorks services and apply
runtime policies on them consistently.

With Embedded Agents

Embedded agents implement runtime policy enforcement for services deployed in TIBCO ActiveMatrix
BusinessWorks engines. The embedded agents are integral parts of the engines themselves.
An agent intercepts and processes messages as they enter and exit each service. You do not need to explicitly
deploy the embedded agent.

With Proxy Applications

ATIBCO ActiveMatrix Policy Director Proxy Agent is an intermediary that can implement runtime policy enforcement on behalf of a consumer or provider. The TIBCO ActiveMatrix Policy Director proxy agent runs on and is managed on the ActiveMatrix virtualization platform.