The most user visible element of any identity and access management environment is the enforcement mechanism. These are the elements of the environment that people interact with every day. While enforcement can mean a great many things to many people, for the purposes of this chapter when we describe enforcement we will be discussing the elements of the runtime systems that perform authentication and authorization. Authentication is responsible for validating a user identity through a variety of mechanisms, essentially confirming they are who they say they are. Authorization combines identity information with access information and grants the user access to read, write, or delete a specific ...