Securely granting access to a target system to a user is disclosed. A plurality of security policies is requested from a plurality of distributed policy systems. A plurality of security policies is obtained from the plurality of distributed policy systems. A temporary grant of access that is an aggregate of the plurality of security policies is granted. The temporary access grant is implemented for the user.