Hitachi ID Identity Manager: Faster onboarding, reliable deactivation and efficient change management
Upcoming SlideShare
Loading in...5
×
 

Like this? Share it with your network

Share

Hitachi ID Identity Manager: Faster onboarding, reliable deactivation and efficient change management

on

  • 3,579 views

Hitachi ID Management Suite Demo: ...

Hitachi ID Management Suite Demo:

Managing the User Lifecycle Across On-Premises and Cloud-Hosted Applications.

Using automation and self-service to secure and automate user and entitlement management.

http://hitachi-id.com/

Statistics

Views

Total Views
3,579
Views on SlideShare
3,579
Embed Views
0

Actions

Likes
0
Downloads
12
Comments
0

0 Embeds 0

No embeds

Accessibility

Categories

Upload Details

Uploaded via as Adobe PDF

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

Hitachi ID Identity Manager: Faster onboarding, reliable deactivation and efficient change management Document Transcript

  • 1. 1 ID Management Suite Demo Managing the User Lifecycle Across On-Premises and Cloud-Hosted ApplicationsUsing automation and self-service to secure and automate user and entitlement management. © 2012 Hitachi ID Systems, Inc.. All rights reserved. 1
  • 2. Slide Presentation2 HiIM Features Automation: • Provision joiners, deactivate leavers. • Multiple HR feeds. Requests portal: • Self-service profile updates. • Delegated security change requests. Security controls: • Access certification. • RBAC and SoD. • Reports on current entitlements, history. Workflow process: • Authorizers. • Implementers. • Certifiers. Integrations: • 110+ connectors, included. • Incident management, SIEM, e-mail interfaces. • Manage building access, physical assets. Identity synchronization: • Consistent data among apps. © 2012 Hitachi ID Systems, Inc.. All rights reserved. 2
  • 3. Slide Presentation3 Access Certifier FeaturesHitachi ID Access Certifier automates periodic audits of all users and their access rights: • Orgchart integration: – Managers are reminded to review their direct subordinates. • Certification: – Each manager’s review is completed by an electronic signature, to certify that remaining entitlements are appropriate. • Completion: – Managers are motivated to complete the audit, since failure to do so prevents their superiors’ own audits. • Roll-up: – At the end of the process, executives can attest to appropriate entitlements enterprise-wide. © 2012 Hitachi ID Systems, Inc.. All rights reserved. 3
  • 4. Slide Presentation4 HiPM Features Password synch: • Reduce the number of passwords per user. Self service: • Password reset. • Clear lockout. • Smart card PIN reset. • Token PIN reset. • HDD key recovery. Access from: • PC browser or login screen. • At the office or remote. • Smart phone or voice call. Assisted service: • Password, token PIN, intruder lockout. Policy enforcement: • Password complexity, expiry, history. • Non-password authentication. Managed enrollment: • Security questions. • Login IDs. • Mobile phone numbers. © 2012 Hitachi ID Systems, Inc.. All rights reserved. 4
  • 5. Slide Presentation5 Enabling TechnologiesHitachi ID Identity Manager includes technology that enables deployment in real-world, complexorganizations: Challenge Technology Impact Diversity of login systems. 110 connectors built-in. Easy to integrate with existing infrastructure Different, disconnected login Auto-discovery, automatic Efficient processes to IDs. and self-service discover and connect login reconciliation. IDs. Thousands of change request Dynamic workflow: a single, Significantly reduces setup types. parametric process used to and maintenance effort for authorize all change types. request forms and change approvals. No pre-existing model Functional without a role Get to production without associating users with roles, model: users can request waiting for a role mining roles with entitlements. resources directly. Access project to complete. Certifier available to find, remove inappropriate rights.6 Enabling TechnologiesHitachi ID Password Manager includes technology that enables deployment in real-world, complexorganizations: Challenge Technology Impact Many systems and apps. 110 connectors built-in. Rapid, broad integration. Forgotten primary password. SKA, WinXP/GINA, Self service available at OS Win7/Cred Provider, IVR. login prompt. Inconsistent login IDs. Auto-discovery, auto-mapping, Rapid deployment, minimal self-service mapping. consulting. Security question data. Automated enrollment Rapid deployment, high user process, built-in forms. adoption Too many login prompts. Hitachi ID Login Manager Fewer IDs/PWs to type. auto-populates ID/PW. © 2012 Hitachi ID Systems, Inc.. All rights reserved. 5
  • 6. Slide Presentation7 Enabling Technologies (2) Challenge Technology Impact Seamless integration with Embeddable, customizable UI. Easily ties in with portal, help corporate IT. Call tracking and e-mail desk and other systems. integration. Cached domain PWs. ActiveX in Hitachi ID Password Eliminate lockouts. Intruder lockouts after web PW Manager UI refreshes cached change. PW. Mobile users: forgotten PW. SSPR over temporary VPN. Business continuity. Lower help desk call volume.8 Enabling Technologies (3) Challenge Technology Impact Smart cards: forgotten PIN, PIN reset, backup passwords. Business continuity. lost card. Lower help desk call volume. Tokens: forgotten PIN, lost PIN reset, emergency " token. pass-code. Full disk encryption: forgotten Self-service key recovery. " key. Require multi-factor Authentication chains. Example: PIN via SMS authentication. followed by security questions. © 2012 Hitachi ID Systems, Inc.. All rights reserved. 6
  • 7. Slide Presentation9 Closed Loop IAMIntegrated Hitachi ID Management Suite Integrated Systems List accounts Target List of Record people Auto Systems discovery Updates Detected changes Create, Non-integrated Auto-provisioning Identity delete, Systems Identity synch. Cache update Updates accounts Automatic request - Validate requests Auto- Manual Requests - Route for approval Requesters Web UI - Invite authorizers fulfillment request - Send reminders Work - Escalate Queue Invitations - Delegate Create, Manual delete, fulfillment Connectors update Request Transaction accounts Approvals Queue Authorizers Approve, Web UI Manager reject, delegate Invitations Invitations Certification Workflow Implementer Accept, Certifiers Review, Implementers certify, Web UI Manager Web UI confirm correct © 2012 Hitachi ID Systems, Inc.. All rights reserved. 7
  • 8. Slide Presentation10 Multi-Master Architecture ix, Un , D, /390 A S P, d O DA 0 e tiv or L S40 d, Na assw ge A st e p han Password -ho pps User c Synch ud a Trigger Target Systems Clo aaS Systems S with local agent: OS/390, Unix, PW Reverse ate Hitachi ID older RSA lid Web Proxy Va Application VPN s Target Systems Server(s) ice Server erv with remote agent: IVR bS SQL Server DB We AD, SQL, SAP, Notes, etc ork Load SQL etw Balancer DB lN ca ails Lo Target Systems Em SQL/Oracle ter en Firewall SMTP or ets Notes Mail Tic k ge r t aC &T r ig Da Incident up te TCP/IP + AES Management Lo ok mo Various Protocols System System of Firewall Re Record Proxy Server Secure Native Protocol (if needed) HTTPS © 2012 Hitachi ID Systems, Inc.. All rights reserved. 8
  • 9. Slide Presentation11 Included ConnectorsMany integrations to target systems included in the base price: Directories: Servers: Databases: Any LDAP, AD, WinNT, NDS, Windows NT, 2000, 2003, Oracle, Sybase, SQL Server, eDirectory, NIS/NIS+. 2008, Samba, Novell, DB2/UDB, Informix, ODBC. SharePoint. Unix: Mainframes, Midrange: HDD Encryption: Linux, Solaris, AIX, HPUX, 24 z/OS: RACF, ACF2, McAfee, CheckPoint. more. TopSecret. iSeries, OpenVMS. ERP: Collaboration: Tokens, Smart Cards: JDE, Oracle eBiz, PeopleSoft, Lotus Notes, Exchange, RSA SecurID, SafeWord, SAP R/3 and ECC 6, Siebel, GroupWise, BlackBerry ES. RADIUS, ActivIdentity, Business Objects. Schlumberger. WebSSO: Help Desk: Cloud/SaaS: CA Siteminder, IBM TAM, BMC Remedy, SDE, HP SM, WebEx, Google Apps, Oracle AM, RSA Access CA Unicenter, Assyst, HEAT, Salesforce.com, SOAP Manager. Altiris, Track-It! (generic).12 Simple Integration with Custom Apps • ID Management Suite easily integrates with custom, vertical and hosted applications using flexible agents . • Each flexible agent connects to a class of applications: – API bindings (C, C++, Java, COM, ActiveX, MQ Series). – Telnet / TN3270 / TN5250 / sessions with TLS or SSL. – SSH sessions. – HTTP(S) administrative interfaces. – Web services. – Win32 and Unix command-line administration programs. – SQL scripts. – Custom LDAP attributes. • Integration takes a few hours to a few days. • Fixed cost service available from Hitachi ID. © 2012 Hitachi ID Systems, Inc.. All rights reserved. 9
  • 10. Slide Presentation13 Demo14 Corporate Overview14.1 Hitachi ID Corporate Overview Hitachi ID is a leading provider of identity and access management solutions. • Founded as M-Tech in 1992. • A division of Hitachi, Ltd. since 2008. • Over 900 customers. • More than 11M+ licensed users. • Offices in North America, Europe and APAC. • Partners globally. © 2012 Hitachi ID Systems, Inc.. All rights reserved. 10
  • 11. Slide Presentation14.2 Hitachi ID Value Proposition © 2012 Hitachi ID Systems, Inc.. All rights reserved. 11
  • 12. Slide Presentation 14.3 Hitachi ID Advantages 14.4 Representative Hitachi ID Customers500, 1401 - 1 Street SE, Calgary AB Canada T2G 2J3 Tel: 1.403.233.0740 Fax: 1.403.233.0725 E-Mail: sales@Hitachi-ID.com File: PRCS:preswww.Hitachi-ID.com Date: March 1, 2012