Presentation is loading. Please wait.

Presentation is loading. Please wait.

Identity Management and Enterprise Single Sign-On (ESSO)

Published byEdward Harris Modified over 8 years ago

Similar presentations

Presentation on theme: "Identity Management and Enterprise Single Sign-On (ESSO)"— Presentation transcript:

1 Identity Management and Enterprise Single Sign-On (ESSO)
ICT Strategy Identity Management and Enterprise Single Sign-On (ESSO)

2 Introduction Follows on from other related themes:
Unified Operator Interface (UOI) Network Convergence Network Security and Domains Circles of Trust Federated Identities Security as a Service Location transparency Virtualisation

3 Identity Management Business Value
“Identity management projects are much more than technology implementations — they drive real business value by reducing direct costs, improving operational efficiency and enabling regulatory compliance.”

4 Explosion of ID’s Business Automation # of Digital IDs Time Internet
Intra-Agency (B2E) Partners (B2B) Customers (B2C) Mobility # of Digital IDs Internet Client Server Applications Mainframe Time Pre 1980’s 1980’s 1990’s 2000’s

5 The Disconnected Reality
Authentication Authorisation Identity Data HR System Authentication Authorisation Identity Data NOS Authorisation Identity Data Authentication Web Apps Enterprise Directory Authentication Authorisation Identity Data Infrastructure Application Authentication Authorisation Identity Data COTS Application Authentication Authorisation Identity Data In-House Application Authentication Authorisation Identity Data In-House Application “Identity Chaos” Lots of users and systems required to do business Multiple repositories of identity information; Multiple user IDs, multiple passwords Decentralised management, ad hoc data sharing

6 Multiple Contexts Our SUPPLIERS Our CUSTOMERS Our AGENCY and EMPLOYEES
Customer satisfaction & customer intimacy Cost competitiveness Reach, personalisation Collaboration Outsourcing Faster business cycles; process automation Value chain Our AGENCY and EMPLOYEES Our PARTNERS Our REMOTE and VIRTUAL EMPLOYEES Mobile workforce Flexible/temp workforce

7 Pain Points Too many user stores and account admin requests
IT Admin Developer End User Security/ Compliance Business Owner Too many user stores and account admin requests Unsafe sync scripts Redundant code in each app Rework code too often Too many passwords Long waits for access to apps, resources Too many orphaned accounts Limited auditing ability Too expensive to reach new partners, channels Need for control

8 To-Be Authentication Should only have to login once
Identity is federated across domains Access permissions determined by Role(s), Groups and Policies Automated provisioning linked to ERP Systems Employees joining/leaving (HR) Contractors (Procurement)

9 Federated Identities Cross domain trust using:
Security Access Markup Language (SAML) Liberty Alliance (ID-FF)/WS-Federation protocols Digital Certificates

10 IAM Architecture

Download ppt "Identity Management and Enterprise Single Sign-On (ESSO)"

Similar presentations

Agenda AD to Windows Azure AD Sync Options Federation Architecture

Agenda AD to Windows Azure AD Sync Options Federation Architecture
Autenticazione e Gestione delle Identità Giacomo Aimasso – CISM – CISA.

Autenticazione e Gestione delle Identità Giacomo Aimasso – CISM – CISA.
Quality in Identity and Access Management Systems IDM: Overview Michele Brass, PMP PMI Westchester Chapter Program Manager – Collaboration Tools.

Quality in Identity and Access Management Systems IDM: Overview Michele Brass, PMP PMI Westchester Chapter Program Manager – Collaboration Tools.
Lecture 23 Internet Authentication Applications

Lecture 23 Internet Authentication Applications
Understanding Active Directory

Understanding Active Directory
Identity and Access Management IAM. 2 Definition Identity and Access Management provide the following: – Mechanisms for identifying, creating, updating.

Identity and Access Management IAM. 2 Definition Identity and Access Management provide the following: – Mechanisms for identifying, creating, updating.
Identity and Access Management

Identity and Access Management
Access and Identity Management for Enterprise Portals Rohit Gupta Director, Identity Management Product Management Oracle Corporation.

Access and Identity Management for Enterprise Portals Rohit Gupta Director, Identity Management Product Management Oracle Corporation.
Data and Applications Security Developments and Directions Dr. Bhavani Thuraisingham The University of Texas at Dallas Single-Sign On and Federated Identity.

Data and Applications Security Developments and Directions Dr. Bhavani Thuraisingham The University of Texas at Dallas Single-Sign On and Federated Identity.
Windows Server 2012 R2 Capabilities for BYOD Scenario Yuri Diogenes Senior Knowledge Engineer Data Center, Devices & Enterprise Client – CSI Team’s Page:

Windows Server 2012 R2 Capabilities for BYOD Scenario Yuri Diogenes Senior Knowledge Engineer Data Center, Devices & Enterprise Client – CSI Team’s Page:
ICT Strategy Service Management. As-is situation Two separate technical infrastructures OSS vs. BSS OSS is 16x greater in financial terms Two “parallel.

ICT Strategy Service Management. As-is situation Two separate technical infrastructures OSS vs. BSS OSS is 16x greater in financial terms Two “parallel.
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)

SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
© 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Automates Infrastructure Outsourcing.

© 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Automates Infrastructure Outsourcing.
Identity Lifecycle Management Jonny Chambers Senior Technical Specialist Microsoft Ireland

Identity Lifecycle Management Jonny Chambers Senior Technical Specialist Microsoft Ireland
Mobility Without Vulnerability: Secure and Enable Your Mobile Users, Apps, and Devices David Clapp – Intuitive.

Mobility Without Vulnerability: Secure and Enable Your Mobile Users, Apps, and Devices David Clapp – Intuitive.
Identity and Access Management Dustin Puryear Sr. Consultant, Puryear IT, LLC

Identity and Access Management Dustin Puryear Sr. Consultant, Puryear IT, LLC
Identity and Access Management Business Ready Security Solutions.

Identity and Access Management Business Ready Security Solutions.
Digital Identity Management Strategy, Policies and Architecture Kent Percival 2005 06 23 A presentation to the Information Services Committee.

Digital Identity Management Strategy, Policies and Architecture Kent Percival A presentation to the Information Services Committee.
Chapter 20 20-1 © 2012 Pearson Education, Inc. Publishing as Prentice Hall.

Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.
APS (Keystone) Security “dial tone” Doron Grinstein Chief Architect October 2012 | Version 0.2 | Confidential.

APS (Keystone) Security “dial tone” Doron Grinstein Chief Architect October 2012 | Version 0.2 | Confidential.

Similar presentations

Ads by Google