--The provision manager maintains who and what of provisions here you define the rules, access polices, user profiles and workflow processes… your exit policy can automate the process of deleting access.
--The provisioning server allows you to rollback and recover when a transaction fails or is stopped.
--Password Management, self service, attributes of password, password synchronization
--Identity reconciliation detect any accounts or changes to user access privileges affected outside of OIM control and take corrective actions or notify an administrator
--Captures audit data of Who, What, When and How, profiles, policy to provide audit data for SOX, HIPPA, etc…
Can access users patterns and determine if they are have proper access.
Enterprise Identity Management NOS/Directories OS (Unix) Systems & Repositories Applications ERP CRM HR Mainframe Auditing and Reporting Policy and Workflow Employees IT Staff SOA Applications Partners External Delegated Admin Customers Internal Identity Management Service
Administrative scalability via workflow and delegation
Access control leverages up to date identity information
Comprehensive auditing to a common database
Database Vault, Audit Vault and SOX Provides Security measures Provide a place to retrieve Audit information Provide collect of Key information Provide reports on data important to your organiziation
Audit Vault Protect data with AV Security by the Administrator Store data with AV Archiver and AV Audit Collection Report on data with Alerts and Reports
Prevent DBA from seeing Medical information, Social Security numbers and other regulated data.
Enforce data access through the application?
Prevent un-authorized modifications to the application and database?
Oracle Database Vault Realms Realms can be easily applied to existing applications with minimal performance impact Medical Information Financial Information Insider access to data can be controlled Security risk from server consolidation can be controlled with realms. DBA Medical records DBA
Database DBA attempts to views Medical data
select * from HR.emp FIN DBA
Medical Records DBA attempts to views Fin. data
Database Vault administration view supplied by Oracle