Identity Management

From MgmtWiki
Jump to: navigation, search

Full Title or Meme

Identity Management (IdM) or Identity and Access Management (IAM) is a field of management in enterprises that is not clearly defined.

Context

  • Customer Relationship Management (CRM) has been an issue from the earliest days of tabulating machine deployment or earlier.
  • Vendor Relationship Management (VRM) has been proposed by Doc Searls[1] as the User managing their vendors.

Problems

The term is not well defined.

For example: According to Gartner, IGA solutions are tools that “manage digital identity and access rights across multiple systems.” They accomplish this by aggregating and correlating identity and access rights data that is distributed throughout the IT landscape, in order to enhance control over user access. This aggregated data serves as the basis for what Gartner considers the core IGA functions: • Identity Life Cycle and Entitlements Management • Access Requests • Workflow Orchestration • Fulfillment via Automated Provisioning and Service Tickets • Reporting and Analytics • Role and Policy Management • Auditing

Solutions

  • This wiki will focus on User Object management and User Consent managment rather than Identity Management.
  • IdM roles (as defined in the IDEF Functional Model:
  1. User or User Agent
  2. Identity Provider
  3. Attribute Provider
  4. Relying Party
  5. Intermediaries
  6. Credential Service Provider
  7. Registration Authorities
  • The distinction between the real-world User and the digital Entity User Agent often get confused and should be disambiguated in any serious discussion.
  • In the wiki items 2 and 3 are combined into IAP since the distinction between the two has become blurred.
  • Also the last two are less interesting and also hard to separate from other functions.

References

  1. Doc Searls The Intention Economy: When Customers Take Charge (2012-04) ISBN 978-1422158524