Your SlideShare is downloading. ×

Hitachi ID Identity Manager Brochure

218
views

Published on

Managing identities and entitlements. …

Managing identities and entitlements.

Hitachi ID Identity Manager streamlines and secures the management of users and entitlements. It strengthens internal controls with automated access deactivation, Role Based Access Control (RBAC), Segregation of Duties (SoD) policy enforcement and access certification. It reduces IT cost and improves user service with automated, delegated and self-service user management.

http://hitachi-id.com/identity-manager/

Published in: Technology

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
218
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. ©2013HitachiIDSystems,Inc.Allrightsreserved.Allothermarks,symbolsandtrademarksarethepropertyoftheirrespectiveowners.HitachiIDIdentityManagerConsistentuserinformationacrossallsystemsIdentityManagercancopychangestouserinformationfromonesystemtoanother,onaprioritybasis,automatically.IdentitySynchronizationVisibilityandaccountabilityIdentityManagerincludesarichsetofbuilt-inreportsforanalyzingentitlementsandchangehistorybyuser,application,roleorpolicy.ReportsEliminatemanualusersetupanddeactivationIdentityManagercandetectchangesinasystemofrecord(suchasHR)andupdateaccessrightsbycreatingaccountsfornewusersanddeactivatingaccessfordepartedusers.AutomationEmpoweruserstomanageidentitiesandentitlementsAsimplewebportalenablesuserstoupdatetheircontactinformationandrequestaccesstoapplicationsornetworkresources.Managersandapplication/dataownerscanrequestchangestosecurityentitlements.Requestsmaybetoadd/removeapplicationaccess,changeroles,assign/revokegroupsorscheduledeactivation.RequestPortalReviewandcleanupsecurityentitlementsPeriodicallyinvitebusinessstake-holderstoreviewtheusersandsecurityentitlementswithintheirscopeofauthority.Eachiseithercertifiedorflaggedforremovalafterfurtherapproval.AccessCertificationEnsurethatchangerequestsareapprovedbeforetheyarecompletedAuthorizationWorkflowAllchangerequestsprocessedbyIdentityManagermaybesubjecttoapprovalbyoneormorestake-holdersbeforebeingcompleted.hitachi-id.comApplicationaccesscontrolsareonlyasgoodastheprocessesusedtoassignsecurityentitlementstousers.Orphanaccounts,dormantaccountsandstaleprivilegesareevidenceofprocessproblems.InternalControlsItcanbedifficulttoanswersimplequestionslike,“whohasaccesstothisapplication”or“whoapprovedthisentitlementandwhen?”Audit/ComplianceManaginguseraccesstohundredsofapplicationsisexpensive.Changemanagementisacostlybottleneckatoddswithfrequentreorganizations,anincreasinglyopenperimeterandevergrowingapplicationinventory.ITCostandDelayLostProductivityEmployeesandcontractorswastevaluabletimewaitingforneededaccess.ChallengesHitachiIDIdentityManagerautomatesthefulllifecycleofusersandentitlements,fromonboardingtodeactivation.Ithasalowertotalcostofownership(TCO)thancompetingproductsbecauseconnectors,forms,workflows,auto-discoveryandreportsareallbuiltin.ReturnonInvestmentHitachiIDIdentityManagerstreamlinesandsecuresthemanagementofusersandentitlements.Itstrengthensinternalcontrolswithautomatedaccessdeactivation,RoleBasedAccessControl(RBAC),SegregationofDuties(SoD)policyenforcementandaccesscertification.ItreducesITcostandimprovesuserservicewithautomated,delegatedandself-serviceusermanagement.Managingidentitiesandentitlements.
  • 2. ©2013HitachiIDSystems,Inc.Allrightsreserved.Allothermarks,symbolsandtrademarksarethepropertyoftheirrespectiveowners.HitachiIDIdentityManagerReadthisbrochureonline:2WebExConnect,GoogleApps,Salesforce.com,UltiProHR,Office365,CybershiftCloud/SaaSNetworkdevicesandVPNsviaAD,LDAP,SSHNetworkingExchange2000-2010,NotesNABandIDfiles,GroupWiseGroupwareOracleeBiz,PeopleSoft,SAPR/3,JDEandmoreApplicationz/OSwithRACF,TopSecretorACF/2;iSeries;ScriptsforVM/ESA,Unisys,Siemens,OpenVMS,TandemMainframes/MiniLinux,Solaris,AIX,HP-UXwithpasswd,shadow,TCB,Kerberos,NISorNIS+UnixOracle,Sybase,SQLServer,DB2/UDBDatabaseWindows,NetWare,Samba,NASappliancesFile/PrintWindows/ActiveDirectory,LDAP,eDirectory,NDSDirectoryIncludedConnectorsIncidentManagementIntegrationsAutomaticallycreate,updateandcloseticketson:•AxiosAssyst •BMC/RemedyARS•BMCSDE •CAUnicenter•ClarifyeFrontOffice •FrontRangeHEAT•HPServiceManager •NumaraTrack-IT!•Symantec/Altiris •TivoliServiceDesk•ServiceNow•ServiceNowAdditionalintegrationsviae-mail,ODBC,webservicesandwebformsareavailable.HitachiIDIdentityManagerispartoftheHitachiIDManagementSuite,whichalsoincludes:PasswordManagerforself-servicemanagementofauthenticationfactorsandPrivilegedAccessManagertosecureadministratorandserviceaccounts.Formoreinformation,pleasevisit:http://hitachi-id.com/orcall:1.403.233.0740|1.877.386.0372orcall:1.403.233.0740|1.877.386.0372EnforceapolicyofleastprivilegeIdentityManagerensuresthatusershaveappropriatesecurityentitlements.•Rolebasedaccesscontrol(RBAC).•Segregationofduties(SoD)policies,bothdetectiveandpreventive.•Standarduserconfigurationusingtemplateaccounts.•Controlsoverwhocanmakerequestsonbehalfofanygivenuser.•Periodicaccesscertificationandcleanupofstaleentitlements.SecurityPolicyEnforcementInvestinautomationwhereitmakessenseIdentityManagerincludesover100connectorsthatcanautomaticallyprovision,updateanddeactivateaccessoncommonsystemsandapplications.Integrationswithverticalmarketorcustomapplicationscanbemadeviaflexibleagentsorabuilt-inworkflowthatinvitessystemadministratorstocompleterequestsmanually.AutomatedConnectorsandHumanImplementersOne-stopshoppingforallchangerequestsBuilt-ininventorytrackingandimplementerworkflowsallowIdentityManagertoprovisionphysicalassetssuchasbuildingaccessbadges,laptopsandphones.LogicalAccessandPhysicalAssetsIntercept“AccessDenied”errorsWhenuserstrytoopenshares,foldersorSharePointlibrarieswheretheydonothaveaccess,IdentityManagerprovidesaneasylinktoawebpagewheretheycanrequestappropriatesecurityentitlements.WindowsandSharepointIntegration