Uploaded on

Managing Active Directory security. …

Managing Active Directory security.

Hitachi ID Group Manager (included with Hitachi ID Identity Manager) moves the responsibility for managing Active Directory groups from IT to users. It lowers IT costs and improves user service by intercepting user attempts to access network resources and redirecting users to a web portal where they request appropriate group memberships.

http://hitachi-id.com/group-manager/

More in: Technology
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
    Be the first to like this
No Downloads

Views

Total Views
332
On Slideshare
0
From Embeds
0
Number of Embeds
0

Actions

Shares
Downloads
0
Comments
0
Likes
0

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide

Transcript

  • 1. ©2013HitachiIDSystems,Inc.Allrightsreserved.Allothermarks,symbolsandtrademarksarethepropertyoftheirrespectiveowners.HitachiIDGroupManager hitachi-id.comAuditablesecurity,transparentchangecontrolGroupManagercanreporton:•WhichusersaremembersofgroupX?•WhichgroupmembershipsdoesuserYhave?•WhoauthorizedmembershipingroupZforuserW?•WhendiduserAgainmembershipingroupB?•WhorequestedandwhoauthorizedgroupBforuserA?ReportsOfferhelpwhenusersfirstgetan“AccessDenied”errorWheninstalledonWindowsworkstations,thiscomponentreplacesthenative“accessdenied”dialogwithonethatincludesalinktotheappropriateaccessrequestwebpage.AWindowsShellExtensionIntuitivenavigationwithoutclientsoftwareAlternately,userscanfindtheirnetworkresourceusingaWindowsexplorer-likewebportalwithoutinstallinganysoftwareontheirPCs.AWebBrowserViewofShares,FoldersandPrintersEasytounderstandrequestsforaccessWhenusersselectashareorfolder,GroupManagerpresentsappropriateaccessoptions:•Groupsthathaverightstothatresource.•Nestedgroups.•Nestedresources(folders).APortalThatGuidesUserstoAppropriateGroupsChangerequestsaresubjecttosecure,reliableapprovalsAuthorizationWorkflowRequestsforgroupmembershipmustbeapprovedbeforebeingcompleted.Defaultroutingistogroupownersbutcanbeextended.Promptandreliableapprovalsareachievedby:•Concurrentinvitationstomultipleapprovers.•ApprovalbyXofYauthorizers.•Automaticreminders.•Escalation.•Scheduleddelegation.•Scheduleddelegation.Inmediumtolargeorganizations,managinguseraccesstonetworkresourcessuchassharesandfolderscanbeaslowbusinessprocess.Theresultislostproductivitywheneveruserschangerolesorprojects.LostProductivityThehelpdeskisinundatedwithcallsrequestingaccess.Fewusersunderstandthesecurityinfrastructure,socallsusuallybeginwith“Igotanaccessdeniedmessage.”TheprocessusuallyproceedsbyidentifyingtheTheprocessusuallyproceedsbyidentifyingtheresourcethatthecallertriedtoaccess,findinggroupsthathavereadorwriterightstoit,findinggroupownersandverifyingthataccessforthecallerisappropriate-allbeforegrantingaccess.Thissequencecanbebothtime-consumingandcostly.ITSupportCostChallengesHitachiIDGroupManagerreducesthecomplexityofgroupmanagementbyleveragingself-service.Thisresultsinincreaseduserproductivityandreducedsupportcosts.ReturnonInvestmentHitachiIDGroupManager(includedwithHitachiIDIdentityManager)movestheresponsibilityformanagingActiveDirectorygroupsfromITtousers.ItlowersITcostsandimprovesuserservicebyinterceptinguserattemptstoaccessnetworkresourcesandredirectinguserstoawebportalwheretheyrequestappropriategroupmemberships.ManagingActiveDirectorysecurity.
  • 2. ©2013HitachiIDSystems,Inc.Allrightsreserved.Allothermarks,symbolsandtrademarksarethepropertyoftheirrespectiveowners.HitachiIDGroupManager 2SharePointGroupwareWindows,Samba,NASappliances,CIFS,SMBFile/PrintWindows/ActiveDirectoryDirectoryIncludedConnectorsIncidentManagementIntegrationsAutomaticallycreate,updateandcloseticketson:•AxiosAssyst •BMC/RemedyARS•BMCSDE •CAUnicenter•ClarifyeFrontOffice •FrontRangeHEAT•HPServiceManager •NumaraTrack-IT!•Symantec/Altiris •TivoliServiceDesk•ServiceNow•ServiceNowAdditionalintegrationsviae-mail,ODBC,webservicesandwebformsareavailable.HitachiIDGroupManagerispartoftheHitachiIDManagementSuite,whichalsoincludes:PasswordManagerforself-servicemanagementofauthenticationfactors,IdentityManagerforuserprovisioning,andPrivilegedAccessManagertosecureadministratorandserviceaccounts.HitachiIDGroupManagerisavailableasastand-aloneproductandisincludedatnoadditionalcostwithHitachiIDIdentityManager.Manager.Formoreinformation,pleasevisit:http://hitachi-id.com/orcall:1.403.233.0740|1.877.386.0372Readthisbrochureonline:WindowsAccessDeniedErrorDialogHitachiIDGroupManagerbeginsbyinterceptingtheWindows"AccessDenied"errordialogwindowanddisplayingadditionalinformation--notablyabuttonthatlaunchestheuserswebbrowsertoaweb-basedrequestsystem.ApproveRequestTheauthorizer(s)willreceivee-mailsaskingthemtoreviewtherequest.Theycanapprove,rejectordelegatethedecisiontosomeonemorefamiliarwiththesituation.