Hitachi ID Identity Manager: Self-service and automated user provisioning
0 likes769 views
The document discusses the Hitachi ID Identity Manager, which effectively manages user lifecycles across on-premises and cloud-hosted applications through a dynamic workflow system for user provisioning and access management. It highlights the simplicity of installation and configuration, as well as the cost efficiency of consolidating the workflow process, ultimately enhancing user experience and reducing administrative efforts. The document also outlines various use cases, automation features, and reporting capabilities related to user provisioning and access certification.
Hitachi ID Identity Manager: Self-service and automated user provisioning
- 1. 1 Hitachi ID Identity Manager Managing the User Lifecycle Across On-Premises and Cloud-Hosted Applications User provisioning, RBAC, SoD and access certification. 2 HiIM Work-Flow Demonstration Example use cases of the Hitachi ID Identity Manager work-flow engine, and a description of the unique approach to configuring and maintaining a dynamic work-flow system. © 2012 Hitachi ID Systems, Inc.. All rights reserved. 1
- 2. Slide Presentation 3 HiIM Dynamic Workflow The Hitachi ID Identity Manager workflow engine implements a single process for entering, validating, approving and executing change requests: Contents • Create user profile, login accounts. of a change • Enable, disable login account. request: • Move, rename user object. • Change attributes. Global • Validate, set profile attributes. business • Filter, attach, remove resources. logic: • Manage unique IDs, e-mail addresses, etc. • Authorizer routing, reminders, escalation, delegation. Inputs, • Inputs: self-service requests, automated processes, SOAP outputs: API. • Outputs: e-mails to users, help desk tickets, run connectors. Consolidating the workflow process significantly reduces initial implementation and ongoing support costs. © 2012 Hitachi ID Systems, Inc.. All rights reserved. 2
- 3. Slide Presentation 4 Dynamic Workflow Exits exit programs: external pro- B.L. business logic: external pro- grams or scripting code that grams or scripting code that notifies other systems of modifies Hitachi ID Identity Hitachi ID Identity Manager Manager behavior. events. Requester Workflow Transaction Form Auto- Manager Manager input reminders Connector Hitachi ID B.L. Management Suite Validation / Delegated Approval Approved? completion authority form B.L. B.L. B.L. Authorizer Auto- routing escalation B.L. B.L. E-mail E-mail invitations notification Target Systems Authorizers 5 New user provisioning process The following animations illustrate a basic use of the work-flow system: a manager entering a change request to provision a new user, and subsequent authorization and action to fulfill that request. 6 Automatic provisioning (scheduled batch process) Animation: ../pics/camtasia/r6-workflow/6-Request-new-employee/6-Request-new-employee.cam 7 Fill in a form: request access for a new contractor Animation: ../pics/camtasia/r6-workflow/1-request-new-user/1-request-new-user.cam © 2012 Hitachi ID Systems, Inc.. All rights reserved. 3
- 4. Slide Presentation 8 Check status of an open request Animation: ../pics/camtasia/r6-workflow/2-Review-Request/2-Review-Request.cam 9 Authorization process using E-mail invitations and web approval Animation: ../pics/camtasia/r6-workflow/4-Authorize-Review-request/4-Authorize-Review-request.cam 10 Reports – users and accounts Animation: ../pics/camtasia/r6-workflow/reports-users-accounts/reports-users-accounts.cam 11 Reports – orphan and dormant accounts Animation: ../pics/camtasia/r6-workflow/reports-orphan-accounts/reports-orphan-accounts.cam 12 Reports – violations of segregation of duties rules Animation: ../pics/camtasia/r6-workflow/reports-violations-sod-rules/reports-violations-sod-rules.cam © 2012 Hitachi ID Systems, Inc.. All rights reserved. 4
- 5. Slide Presentation 13 Reports – detailed change history Animation: ../pics/camtasia/r6-workflow/reports-detailed-change-history/reports-detailed-change-history.cam 14 Summary • From a user’s perspective, dynamic work-flow looks just like traditional work-flow systems. • Internally, dynamic work-flow is orders of magnitude simpler to install, configure and manage. • Simplified administration is the difference between pilot installations and enterprise deployments. • Hitachi ID Group Manager further simplifies both the user experience and administrative effort for a special class of work-flow transaction: new users asking for new security entitlements. 500, 1401 - 1 Street SE, Calgary AB Canada T2G 2J3 Tel: 1.403.233.0740 Fax: 1.403.233.0725 E-Mail: sales@Hitachi-ID.com File: PRCS:pres www.Hitachi-ID.com Date: March 1, 2012