Term · 25. Access Control — Additional Terms
Subject
Definition
In information security and identity management, a subject is an entity (such as a user, process, service, device, or application) that can be authenticated and that initiates actions on resources within a system. In access control models, the subject is the actor whose attributes, identity, or roles are evaluated against policies to determine authorization decisions. In midPoint product terminology, a subject is the authenticated user (or equivalent actor) represented by a focus object that performs operations within midPoint.
Related terms
-
Active Directory (AD)
Microsoft's enterprise directory service (since Windows 2000 Server) — central repository for user accounts, computer ac …
-
OpenID IPSIE (Interoperability Profile for Secure Identity in the Enterprise) (IPSIE)
OpenID Foundation Interoperability Profile for Secure Identity in the Enterprise (launched October 2024) — working group …
-
Subject Centric Implementation
In midPoint, a **subject centric implementation** is a self-service configuration approach where access request, approva …
-
Access Management (AM)
Discipline of granting and enforcing access to resources after identity has been established. Encompasses authentication …
-
Access Object
Access Object — a unit of an information resource for which access is regulated by access control rules. May be a file, …
-
Access Subject
Access Subject — a person or process whose actions are regulated by access control rules to information system objects. …