P
Policy Administrator (PA)
Definition
(Context: Software)
This component is responsible for establishing and/or shutting down the communication path between a subject and a resource. It would generate any authentication and authentication token or credential used by a client to access an enterprise resource. It is closely tied to the policy engine and relies on its decision to ultimately allow or deny a session. Some implementations may treat the policy engine and PA as a single service; here, it is divided into its two logical components. The PA communicates with the policy enforcement point when creating the communication path. This communication is done via the control plane.
Reference:
EA-Solution-Data-Availability-Requirements.pdf (virginia.gov)