Identity Awareness Commands

For more information about Identity Awareness, see the R81 Identity Awareness Administration Guide.

These terms are used in the CLI commands:

Term	Description
PDP	Identity AwarenessPolicy Decision Point. This is an Identity AwarenessSecurity Gateway, which is responsible to collect and share identities.
PEP	Identity AwarenessPolicy Enforcement Point. This is an Identity AwarenessSecurity Gateway, which is responsible to enforce network access restrictions. It makes its decisions based on identity data it collected from the PDP.
ADLOG	The module responsible for the acquisition of identities of entities (users or computers) from the Active Directory. The `adlog` runs on: An Identity AwarenessSecurity Gateway, for which you enabled the AD Query. The AD Query serves the Identity AwarenessSoftware Blade, which enforces the policy and logs identities. A Log Server. The `adlog` logs identities. The `adlog` is the command line process used to control and monitor the ADLOG feature. The command line tool helps control users' statuses, as well as troubleshoot and monitor the system.

Term

Description

PDP

Identity AwarenessPolicy Decision Point.

This is an Identity AwarenessSecurity Gateway, which is responsible to collect and share identities.

PEP

Identity AwarenessPolicy Enforcement Point.

This is an Identity AwarenessSecurity Gateway, which is responsible to enforce network access restrictions.

It makes its decisions based on identity data it collected from the PDP.

ADLOG

The module responsible for the acquisition of identities of entities (users or computers) from the Active Directory.

The adlog runs on:

An Identity AwarenessSecurity Gateway, for which you enabled the AD Query.

The AD Query serves the Identity AwarenessSoftware Blade, which enforces the policy and logs identities.
A Log Server. The adlog logs identities.

The adlog is the command line process used to control and monitor the ADLOG feature.

The command line tool helps control users' statuses, as well as troubleshoot and monitor the system.

The PEP and PDP processes are key components of the system. Through them, administrators control user access and network protection.