Hitachi ID Identity Manager: Self-service and automated user provisioning

Uploaded on

Hitachi ID Identity Manager: …

Hitachi ID Identity Manager:

Managing the User Lifecycle Across On-Premises and Cloud-Hosted Applications.

User provisioning, RBAC, SoD and access certification.

More in: Technology
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
    Be the first to like this
No Downloads


Total Views
On Slideshare
From Embeds
Number of Embeds



Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

    No notes for slide


  • 1. 1 Hitachi ID Identity Manager Managing the User Lifecycle Across On-Premises and Cloud-Hosted Applications User provisioning, RBAC, SoD and access certification.2 HiIM Work-Flow DemonstrationExample use cases of the Hitachi ID Identity Manager work-flow engine, and a description of the uniqueapproach to configuring and maintaining a dynamic work-flow system. © 2012 Hitachi ID Systems, Inc.. All rights reserved. 1
  • 2. Slide Presentation3 HiIM Dynamic WorkflowThe Hitachi ID Identity Manager workflow engine implements a single process for entering, validating,approving and executing change requests: Contents • Create user profile, login accounts. of a change • Enable, disable login account. request: • Move, rename user object. • Change attributes. Global • Validate, set profile attributes. business • Filter, attach, remove resources. logic: • Manage unique IDs, e-mail addresses, etc. • Authorizer routing, reminders, escalation, delegation. Inputs, • Inputs: self-service requests, automated processes, SOAP outputs: API. • Outputs: e-mails to users, help desk tickets, run connectors.Consolidating the workflow process significantly reduces initial implementation and ongoing supportcosts. © 2012 Hitachi ID Systems, Inc.. All rights reserved. 2
  • 3. Slide Presentation4 Dynamic Workflow Exits exit programs: external pro- B.L. business logic: external pro- grams or scripting code that grams or scripting code that notifies other systems of modifies Hitachi ID Identity Hitachi ID Identity Manager Manager behavior. events. Requester Workflow Transaction Form Auto- Manager Manager input reminders ConnectorHitachi ID B.L.Management Suite Validation / Delegated Approval Approved? completion authority form B.L. B.L. B.L. Authorizer Auto- routing escalation B.L. B.L. E-mail E-mail invitations notification Target Systems Authorizers5 New user provisioning processThe following animations illustrate a basic use of the work-flow system: a manager entering a changerequest to provision a new user, and subsequent authorization and action to fulfill that request.6 Automatic provisioning (scheduled batch process) Animation: ../pics/camtasia/r6-workflow/6-Request-new-employee/6-Request-new-employee.cam7 Fill in a form: request access for a new contractor Animation: ../pics/camtasia/r6-workflow/1-request-new-user/ © 2012 Hitachi ID Systems, Inc.. All rights reserved. 3
  • 4. Slide Presentation8 Check status of an open requestAnimation: ../pics/camtasia/r6-workflow/2-Review-Request/2-Review-Request.cam9 Authorization process using E-mail invitations and web approvalAnimation: ../pics/camtasia/r6-workflow/4-Authorize-Review-request/4-Authorize-Review-request.cam10 Reports – users and accountsAnimation: ../pics/camtasia/r6-workflow/reports-users-accounts/reports-users-accounts.cam11 Reports – orphan and dormant accountsAnimation: ../pics/camtasia/r6-workflow/reports-orphan-accounts/reports-orphan-accounts.cam12 Reports – violations of segregation of duties rulesAnimation: ../pics/camtasia/r6-workflow/reports-violations-sod-rules/ © 2012 Hitachi ID Systems, Inc.. All rights reserved. 4
  • 5. Slide Presentation 13 Reports – detailed change history Animation: ../pics/camtasia/r6-workflow/reports-detailed-change-history/ 14 Summary • From a user’s perspective, dynamic work-flow looks just like traditional work-flow systems. • Internally, dynamic work-flow is orders of magnitude simpler to install, configure and manage. • Simplified administration is the difference between pilot installations and enterprise deployments. • Hitachi ID Group Manager further simplifies both the user experience and administrative effort for a special class of work-flow transaction: new users asking for new security entitlements.500, 1401 - 1 Street SE, Calgary AB Canada T2G 2J3 Tel: 1.403.233.0740 Fax: 1.403.233.0725 E-Mail: File: Date: March 1, 2012