EnforceAuth Platform Overview
EnforceAuth provides an enterprise authorization control plane designed for production environments — governance, policy lifecycle, versioning, multi-environment promotion, rollback, auditability, compliance evidence, decision telemetry, operational visibility, and enterprise support.
What we are (and are not)
| EnforceAuth is | EnforceAuth is not |
|---|---|
| Enterprise platform for policy lifecycle, deployments, and audit | A replacement for OPA/Cedar PDPs |
| Multi-tenant SaaS console + API | An IAM/SSO provider |
| Decision log ingestion and compliance evidence | A SIEM |
Your PDP — OPA or EOPA?
EnforceAuth operationalizes authorization with OSS OPA (default) or Enterprise OPA (EOPA) at enterprise scale. Same Rego, same bundles, same deploy pipeline. → OPA vs EOPA
Define → Enforce → Audit
- Define — Rego (and future engines) in Git, peer-reviewed with version history
- Enforce — Bundles promoted across environments to your PDP fleet
- Audit — Every decision logged for investigation, replay, and compliance
Enterprise capabilities
| Capability | What it gives you |
|---|---|
| Governance | Entity hierarchy, inherited policy, environment-scoped promotion |
| Policy lifecycle | Git-backed sources, draft → test → deploy, rollback |
| Fleet operations | PDP health, bundle activation status, monitoring dashboards |
| Decision telemetry | Ingestion, replay, coverage, and audit trails |
| Compliance | Continuous authorization evidence for regulated workloads |
| Integrations | GitHub Actions, MCP for AI agents, API and CLI |
Multi-engine roadmap
- OPA / EOPA — production today (OPA vs EOPA)
- Cedar (Arbi) — coming soon
- Zanzibar (iBar) — coming soon
Integrations
- API — api.enforceauth.com/docs
- MCP — AI agents via Connect MCP
- eactl — CLI for pipeline operations (eactl)