Presentation is loading. Please wait.

Presentation is loading. Please wait.

Identity and Access Management IAM. 2 Definition Identity and Access Management provide the following: – Mechanisms for identifying, creating, updating.

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "Identity and Access Management IAM. 2 Definition Identity and Access Management provide the following: – Mechanisms for identifying, creating, updating."— Presentation transcript:

1 Identity and Access Management IAM

2 2 Definition Identity and Access Management provide the following: – Mechanisms for identifying, creating, updating and storing identity information for each individual who might require access to technology resources. – Mechanisms for determining which individuals ’ identities should be allowed to access which technology resources.

3 3 Goal To design and implement an identity and access management (IAM) middleware infrastructure that – Improves the user experience, through timeliness and correctness – Based on roles, grants access to appropriate technology resources – Increases our security and audit capability – Opens the door to different levels of access

4 4 Identity and Access Management Drivers Portals Workflow applications Eliminate implicit “ denial of service ” ; improve timeliness of getting new users into the system Separate the two critical components of access management: authentication and authorization E-Authentication – Federal granting agencies and the National Department of Education with require compliance within 5 years Federations Better security and auditing capability Digital library access

5 5 Benefits Reduction in the number of credentials we require users to know Speed up in getting new people into the system Automated provisioned access to technology services based on role Mechanism to quickly remove or change a user ’ s access to all technology services at once Mechanism to compute a “ level of assurance ” that the user who provides credentials is the person s/he claims to be through “ identity proofing ”

6 6 Benefits continued Improved security with better logging Facilitates unified access to multiple applications – Enables initial-sign-on (also called single-sign-on) – With initial-sign-on, it is a straightforward step to a campus portal Applications will be easier to build, will be more consistent with each other, and provide a common user experience around authentication and authorization

7 7 IAM – The Proposal The model that we are pursuing to solve the Identity and Access Management problem is based on the work of the NSF Middleware Initiative and Internet 2. We are committed to an open standards and extensible solution.

8 8 IAM – The Proposal We will address initial sign-on for web applications We will attempt to address initial sign-on for desktop/client applications We will address the affiliate user issue and provide mechanisms for adding such users to the database to allow access to only those services that they should receive

9 9 Identity and Access Management Steering Committee We have established an IAM Steering Committee to ensure that the work we are doing in this area is consistent with the needs of the University First meeting of this group will occur on February 13.

10 10 IAM – Phase 1 IAM Phase 1 project is in flight. Goals include: – Design and specification of the IAM system – Request for Information has been written to determine what the market offers – Administrative and academic groups have been identified to assist in determining standard roles and the services that should be provisioned to them. – The project web site is: http://iam.uconn.edu

11 11 IAM – Who will be involved? UITS staff Staff from various administrative and academic areas

Download ppt "Identity and Access Management IAM. 2 Definition Identity and Access Management provide the following: – Mechanisms for identifying, creating, updating."

Similar presentations

HCQ P MEDICARES HEALTH CARE QUALITY IMPROVEMENT PROGRAM QualityNet Exchange Dennis Stricker Director, Information Systems Group Office of Clinical Standards.

HCQ P MEDICARES HEALTH CARE QUALITY IMPROVEMENT PROGRAM QualityNet Exchange Dennis Stricker Director, Information Systems Group Office of Clinical Standards.
Pennsylvania Banner Users Group 2008 Fall Conference Campus Identity Management in a Banner World.

Pennsylvania Banner Users Group 2008 Fall Conference Campus Identity Management in a Banner World.
Illinois Justice Network Portal Implementation Board Meeting February 11, 2004.

Illinois Justice Network Portal Implementation Board Meeting February 11, 2004.
The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.

The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.
SINGLE SIGN-ON. Definition - SSO Single sign-on (SSO) is a session/user authentication process that permits a user to enter one name and password in order.

SINGLE SIGN-ON. Definition - SSO Single sign-on (SSO) is a session/user authentication process that permits a user to enter one name and password in order.
Technical Issues with Establishing Levels of Assurance Zephyr McLaughlin Lead, Security Middleware Computing & Communications University of Washington.

Technical Issues with Establishing Levels of Assurance Zephyr McLaughlin Lead, Security Middleware Computing & Communications University of Washington.
U.S. Department of Agriculture eGovernment Program February 2004 eAuthentication Integration Status eGovernment Program.

U.S. Department of Agriculture eGovernment Program February 2004 eAuthentication Integration Status eGovernment Program.
Identity Management: Some Basics Mark Crase, California State University Office of the Chancellor CENIC - March 9, 2011.

Identity Management: Some Basics Mark Crase, California State University Office of the Chancellor CENIC - March 9, 2011.
1 eAuthentication in Higher Education Tim Bornholtz Session #47.

1 eAuthentication in Higher Education Tim Bornholtz Session #47.
Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.

Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.
Virtual techdays INDIA │ 18-20 august 2010 Managing Active Directory Using Microsoft Forefront Identity Manager: Amol R Bhandarkar │ Tech Specialist –

Virtual techdays INDIA │ august 2010 Managing Active Directory Using Microsoft Forefront Identity Manager: Amol R Bhandarkar │ Tech Specialist –
Information Resources and Communications University of California, Office of the President Current Identity Management Initiatives at UC & Beyond: UCTrust.

Information Resources and Communications University of California, Office of the President Current Identity Management Initiatives at UC & Beyond: UCTrust.
Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.

Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.
NIH-EDUCAUSE Interoperability Project, Phase 3: Fulfilling the Promise Dartmouth PKI Implementation Workshop Peter Alterman, Ph.D. Assistant CIO for E-Authentication.

NIH-EDUCAUSE Interoperability Project, Phase 3: Fulfilling the Promise Dartmouth PKI Implementation Workshop Peter Alterman, Ph.D. Assistant CIO for E-Authentication.
Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.

Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.
Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –

Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –
Identity Management, what does it solve By Gautham Mudra.

Identity Management, what does it solve By Gautham Mudra.
A simpler way to manage identities across multiple services Aldo Zanoni, CEO 408.675.5015 ext. 232

A simpler way to manage identities across multiple services Aldo Zanoni, CEO ext. 232
Identity Management – Why and How Experiences at CU-Boulder Copyright Linda Drake, Director of Development and Integration, University of Colorado, Boulder,

Identity Management – Why and How Experiences at CU-Boulder Copyright Linda Drake, Director of Development and Integration, University of Colorado, Boulder,
May 30 th – 31 st, 2006 Sheraton Ottawa. Microsoft Certificate Lifecycle Manager Saleem Kanji Technology Solutions Professional - Windows Server Microsoft.

May 30 th – 31 st, 2006 Sheraton Ottawa. Microsoft Certificate Lifecycle Manager Saleem Kanji Technology Solutions Professional - Windows Server Microsoft.

Similar presentations

Ads by Google