Hitachi ID Identity Manager Overview
Hitachi ID Identity Manager is an identity administration and access governance solution.
It reduces the cost of user administration, helps new and reassigned
users get to work more quickly and ensures quick and reliable
access deactivation. This is accomplished with: auto-provisioning,
auto-deactivation, identity synchronization, self-service profile
updates, delegated administration, policy enforcement and reports.
Identity Manager includes connectors to manage users and entitlements
on over 120 kinds of systems and applications.
Identity Manager is an integrated solution for managing identities and
security entitlements across multiple systems and applications.
Organizations depend on Identity Manager to ensure that users get
security entitlements quickly, are always assigned entitlements
appropriate to their needs and in compliance with policy and are
deactivated reliably and completely when they leave the organization.
Identity Manager implements the following business processes to drive
changes to users and entitlements on systems and applications:
- Automation: grant or revoke access based on data feeds.
- Synchronization: keep identity attributes consistent across applications.
- Self-service: empower users to update their own profiles.
- Delegated administration: allow business stake-holders to request changes directly.
- Certification: invite managers and application owners to review and correct entitlements.
- Workflow: invite business stake-holders to approve or deny requested changes.
Identity Manager strengthens security by:
- Quickly and reliably removing access to all systems and applications
when users leave an organization.
- Finding and helping to clean up orphan and dormant accounts.
- Assigning standardized access rights, using roles and rules, to
new and transitioned users.
- Enforcing policy regarding segregation of duties and identifying
users who are already in violation.
- Ensuring that changes to user entitlements are always authorized before
they are completed.
- Asking business stake-holders to periodically review user
entitlements and either certify or remove them, as appropriate.
- Reducing the number and scope of administrator-level accounts needed to
manage user access to systems and applications.
- Providing readily accessible audit data regarding current and
historical security entitlements, including who requested and
approved every change.
Identity Manager reduces the cost of managing users and security entitlements:
- Auto-provisioning and auto-deactivation leverage data feeds from
HR systems to eliminate routine, manual user setup and tear-down.
- Self-service eliminates IT involvement in simple updates to user
names, phone numbers and addresses.
- Delegated administration moves the responsibility for requesting
and approving common changes, such as for new application or
folder access, to business users.
- Identity synchronization means that corrections to user information
can be made just once, on an authoritative system and are then
automatically copied to other applications.
- Built-in reports make it easier to answer audit questions, such as
"who had access to this system on this date?" or "who authorized
this user to have this entitlement?"
Auto-provisioning, identity synchronization, authorization workflow, RBAC, segregation of duties, reporting and more.
- Business Case:
Developing a business case for deploying an identity management and access governance system such as Identity Manager
- Screen Shots:
Snapshots of the Identity Manager web user interface.
- Screen Recordings:
Recordings of user interaction with Identity Manager, Access Certifier and Group Manager.
- Concept Animations:
Animated demonstrations illustrating user interaction with Identity Manager and data flow between components on the network.
- Slide Decks:
A variety of slide presentations about identity management and access governance in general and Identity Manager in particular.