About Identity Manager

Hitachi ID Identity Manager is an integrated solution for managing identities and security entitlements across systems and applications. It ensures that users are granted access quickly, that entitlements are appropriate to business need and that access is revoked once no longer needed.

Identity Manager implements the following business processes to drive changes to users and entitlements on systems and applications:

  • Automation: grant or revoke access based on data feeds.
  • Synchronization: keep identity attributes consistent across applications.
  • Self-service: empower users to update their own profiles.
  • Delegated administration: allow business stake-holders to request changes directly.
  • Certification: invite managers and application owners to review and correct entitlements.
  • Workflow: invite business stake-holders to approve or deny requested changes.

Business Challenge

Users have too many login IDs. A typical user in a large organization may sign into 10 to 20 internal systems. This complexity creates real business problems:

  • Redundant and expensive onboarding processes.
  • Slow and unreliable access deactivation.
  • Users with inappropriate security entitlements, who may be able to intentionally or accidentally harm the organization.

These problems lead to high IT support costs, poor user service and security vulnerabilities, in some cases violating regulatory requirements.

Solution and Features

Identity Manager manages the lifecycles of identities and entitlements. It includes:

  1. Automatically granting and revoking access, after detecting changes on systems of record.
  2. A web portal for access requests and certification.
  3. A workflow engine to invite people to approve requests, review access or complete tasks.
  4. Policy enforcement related to SoD, RBAC, risk scores, privacy protection and more.
  5. Reports, dashboards and analytics.

Identity Manager includes connectors to manage users and entitlements on over 120 kinds of systems and applications, on-premise and in the cloud.

These capabilities are accessed via a web portal, compatible with both full-screen browsers (PC, tablet) and smart-phones (via mobile app).