Beruflich Dokumente
Kultur Dokumente
IDM Suite
Agenda
Introductions. Hitachi ID corporate overview. IDM Suite overview. The user management lifecycle. Addressing identity management system deployment challenges. Advantages of the Hitachi ID solution.
Slide Presentation
Hitachi ID delivers access governance and identity administration solutions to organizations globally. Hitachi ID solutions are used by Fortune 500 companies to secure access to systems in the enterprise and in the cloud. Founded as M-Tech in 1992. A division of Hitachi, Ltd. since 2008. Over 1000 customers. More than 12M+ licensed users. Ofces in North America, Europe and APAC. Partners globally.
Slide Presentation
Business Challenges
More IT more users to manage. There are challenges throughout the user lifecycle. Support cost. User service. Security.
Slow: too much paper, too many people. Expensive: too many administrators doing redundant work. Role changes: add/remove rights. Policies: enforced? Audit: are privileges appropriate? Org. relationships: track and maintain.
Reliable: notication of terminations. Fast: response by sysadmins. Complete: deactivation of all IDs.
Passwords: too many, too weak, often forgotten. Access: Why cant I access that application / folder / etc.
Slide Presentation
IAM in Silos
In most organizations, many processes affect many applications. This many-to-many relationship creates complexity:
Slide Presentation
IT Processes
Retire Application
Transfer
Fire
Start Contract
Password Expiry
Password Reset
Users Passwords
Operating System Directory Application Database E-mail System ERP Legacy App Mainframe
Groups Attributes
10
IDM Suite
Slide Presentation
11
12
Change Management
Hitachi ID Identity Manager manages changes to user proles: Self-service updates to phone numbers, department codes, etc.
HiIM, Hitachi ID Group Manager and Hitachi ID Org Manager manage changes to user roles and responsibilities: Self-service requests for new entitlements. Distributed audit of user rights by managers and app owners. Distributed update of organizational relationships by managers.
Slide Presentation
13
IT Support
Hitachi ID Password Manager for "I forgot/locked my password" calls: Synchronization: Users with fewer passwords have fewer problems. Reset: Users can resolve their own problems without calling the help desk. Assistance: A help desk interface reduces the duration and cost of remaining calls.
Hitachi ID Group Manager for "access denied" calls: Self-service: Users browse for resources and request access. Authorization workow: Group owners are asked to review and approve change requests.
Slide Presentation
14
Deactivating Access
Retirement, resignation, end-of-contract: Hitachi ID Identity Manager detects changes in systems of record, such as HR, and deactivates all access. Managers can schedule deactivation with a workow form.
Dismissals: Security administrators use an HiIM form to terminate all of a users accounts immediately.
Asset retrieval HiIM inventory tracking assists in retrieval of PCs, cell phones, building access badges, etc.
Slide Presentation
15
Detected changes
Auto-provisioning Identity synch.
Identity Cache
Automatic request
Updates
Non-integrated Systems
Requesters
Requests Web UI
- Validate requests - Route for approval - Invite authorizers - Send reminders - Escalate - Delegate
Request Queue
Autofulllment
Work Queue
Manual fulllment
Connectors
Authorizers
Approvals Web UI
Transaction Manager
Invitations
Certifiers
Certification Web UI
Workflow Manager
Implementer Web UI
Accept, conrm
Implementers
Slide Presentation
16
Multi-Master Architecture
, nix , U 0, AD S/39 P, O DA 0 L S40 d e A tiv wor a s N as ge p han c g Tri ch yn S rd wo
ms ste Sy r ge t: en ag
r IVR erve S
ate lid Va
al s) loc er( ith RSA v r w s er Se ID em old hi on yst nix, ac licati t S i t U H pp SQL ge 0, A s DB Tar S/39 ce ss Pa
PW
SQL DB
L/ SQ racle O
Tic ts ke
u ok Lo of m ste d Sy ecor R
er gg Tri & p
all ew Fir
ter en C ta Da e t mo Re
t ge ms Tar yste S
10
Slide Presentation
17
Included Connectors
Servers: Windows NT, 2000, 2003, 2008, 2008R2, Samba, Novell, SharePoint. Mainframes, Midrange: z/OS: RACF, ACF2, TopSecret. iSeries, OpenVMS. Collaboration: Lotus Notes, Exchange, GroupWise, BlackBerry ES.
Databases: Oracle, Sybase, SQL Server, DB2/UDB, Informix, ODBC, Oracle Hyperion EPM Shared Services, Cache. HDD Encryption: McAfee, CheckPoint, BitLocker, PGP. Tokens, Smart Cards: RSA SecurID, SafeWord, RADIUS, ActivIdentity, Schlumberger. Cloud/SaaS: WebEx, Google Apps, MS Ofce 365, Salesforce.com, SOAP (generic).
Unix: Linux, Solaris, AIX, HPUX, 24 more variants. ERP: JDE, Oracle eBiz, PeopleSoft, PeopleSoft HR, SAP R/3 and ECC 6, Siebel, Business Objects. WebSSO: CA Siteminder, IBM TAM, Oracle AM, RSA Access Manager.
Help Desk: ServiceNow, BMC Remedy, SDE, HP SM, CA Unicenter, Assyst, HEAT, Altiris, Clarify, RSA Envision, Track-It!, MS System Center Service Manager
18
Integration takes a few hours to a few days. Fixed cost service available from Hitachi ID.
2013 Hitachi ID Systems, Inc.. All rights reserved.
11
Slide Presentation
19
20
12
Slide Presentation
21
Lock down security and comply with regulations requiring internal controls. Reduce operating costs and improve user productivity. Flexible, scalable, reliable, available.
500, 1401 - 1 Street SE, Calgary AB Canada T2G 2J3 Tel: 1.403.233.0740 Fax: 1.403.233.0725 E-Mail: sales@Hitachi-ID.com
File: PRCS:pres Date: September 19, 2013
www.Hitachi-ID.com