Identity administration and analytics refers to a system capable of both identity and access management (IAM) and identity analytics.

Identity analytics refers to a system capable of examining data about identities -- which typically comprise:

  • Unique identifiers, such as login IDs, e-mail addresses and employee numbers.
  • Identity attributes, such as names and codes for things like a user's department or location.
  • Security entitlements assigned to each identity (user).

Using these data, drawn from one or more systems, an identity analytics system should be able to answer questions such as:

  • What security entitlements does this user have?
  • What users have this security entitlement?
  • What users share these identity attributes?
  • What users have inconsistent (i.e., different values on different systems) identity attributes?
  • Who requested and approved the creation of a given identity?
  • When was a given identity created and/or modified?
  • Are identities and entitlements being actively used or, equivalently, which ones are dormant?
  • Which identities are linked across systems and which are orphaned?

Hitachi ID Identity Manager is an IAM system which includes extensive identity analytics capabilities, such as those described above, built-in.

Return to Identity Management Concepts