SOA authorization using Tivoli Federated Identity Manager and WebSphere Service Registry and Repository

This article describes a service-based approach to authorization in Service Oriented Architecture (SOA) environments using IBM Tivoli Federated Identity Manager (TFIM). This approach extends existing IBM solutions for identity propagation in SOA by leveraging Tivoli Access Manager (TAM) as the authorization policy decision point. A software utility to discover services from the IBM WebSphere Service Registry and Repository (WSRR) to enable the authorization solution will be provided to simplify and accelerate deployment of this authorization solution.