The policies in this stage provide different ways of identifying and authorizing an application, and providing the required access rights for the application. Microgateway supports the following identify and access management policies:

The Authorize User policy authorizes the application against a list of users and a list of groups registered in Microgateway.

The Identify and Authorize policy is used to authorize and allow the client applications to access APIs depending on the identification type specified to validate the client credentials.