Managing POPs
    • 18 Nov 2024
    • 2 Minutes to read
    • Dark
      Light
    • PDF

    Managing POPs

    • Dark
      Light
    • PDF

    Article summary

    Policy Orchestration Points (POPs) define the connection between the Authorization Platform Tenant and the Vendor Tenant, typically running a third-party application. By default, when a Tenant is created, there is one Identity Workspace and one Authorization Workspace. To implement SaaS Authorization Management, you must first create an Orchestration Workspace and create at least one POP.

    To manage Policy Orchestration Points, you can

    • Create a POP
    • Edit a POP
    • Change the mode

    Creating a POP

    To create a Policy Orchestration Point:

    1. In the Orchestration Workspace, click Add Policy Orchestration Point. The Select Vendor side panel opens.
    2. Select the third-party vendor. Current options include: Power BI, Zscaler. and Snowflake. A form opens, enabling you to configure the new POP.
    3. In the General section, enter:
      • Display Name (required)
      • Description (optional)
    4. In the Associated Workspaces, select one Identity Workspace and one Authorization Workspace (required). Note that when an Identity or Authorization Workspace is configured to sync with a Policy Orchestration Point (POP) in the Orchestration Workspace, the synched Workspace cannot be deleted.
    5. In the Connection Settings section, enter the relevant values for each parameter. For more information, see the SaaS Policy Management Authorizer section and click on the third-party vendor you use.
    6. Click Test Connection to verify that the new POP is configured properly and can connect to the third-party vendor app. If the Connection Test fails, an error appears below the Test Connection button indicating what needs to be fixed.
    7. When the Test Connection is successful, click Create. The new POP is added to the list of currently defined POPs and an initial discovery takes place.

    Editing a POP

    To edit a POP:

    1. Click the three vertical dots on the POP you wish to edit, and select Settings. The POP side panel opens with the current configuration in Edit mode. All of the fields except the POP ID and the Authentication Method can be changed.
    2. After you make any changes, click the Test Connection button to verify that the POP is still configured properly and can connect to the third-party vendor.
    3. When the Test Connection is successful, click Save.

    Changing the Mode of a POP

    In the Orchestration Workspace, you can work in Learn mode or in Manage mode. For more information, see Learn and Manage Modes.

    To switch between Learn and Manage Mode:

    1. In the Orchestration Workspace, locate the POP for which you want to switch modes. Click the three vertical dots and select Settings. A side panel opens with the POP Details displayed.
    2. In the Orchestration Settings area, select the Mode. Options are Learn or Manage.
    3. After changing the mode, click Save.

    After changing the mode, you should test the connection by clicking the Test Connection button.


    Was this article helpful?

    What's Next