# Step 7.3. Configure XACML PEP

## Step-by-step

<span style="color: #a6d100; font-weight: bold; font-size: 18px;">1. </span>To configure the XACML PEP You must access the "XACML PEP configuration" page in the following path:

`Main Menu > Administration > Configure Soffid > Security settings > XACML PEP configuration`

<span style="color: #a6d100; font-weight: bold; font-size: 18px;">2. </span>At the "XACML PEP configuration page you must fill in the **Password vault Policy Enforcement Point** section.

<span style="color: #a6d100; font-weight: bold; font-size: 18px;">2.1. </span>The policy must be enabled, you must select Yes on the "Enable XACML Policy Enforcement Point".

<span style="color: #a6d100; font-weight: bold; font-size: 18px;">2.2. </span>Then you must fill in the **Policy set ID** and the **Policy set version** to use.

<span style="color: #a6d100; font-weight: bold; font-size: 18px;">2.3. </span>The trace request is an optional field used to debug.

<span style="color: #a6d100; font-weight: bold; font-size: 18px;">3. </span>Once you fill in the mandatory information, you must click the "Apply" button to save the updates.

<span style="color: #a6d100; font-weight: bold; font-size: 18px;">3.1. </span>If there is any error in the data, Soffid will display a message with the error data.

<p class="callout info">For detailed information about XACML, you can visit the [XACML book](https://bookstack.soffid.com/books/xacml "XACML").</p>

## Screen overview

![](https://bookstack.soffid.com/uploads/images/gallery/2021-09/embedded-image-lv9qiecg.png)