Bojan Pirc (2010) Implementation of identity management system. EngD thesis.
Many organizations nowadays face a problem of managing organization’s system and resource access. The key question presented here is who has access to what resource and if that person is entitled to it. The identity management systems help us solve this question. By applying the identity management system into the organization, the organization doesn’t only acquire overview of user access but it also allows the execution of the given security policy and processes which are required for ensuring the specified IT security level. The identity management systems provide auditing of user requests and approvals. The implementation of identity management system in the organization resolves in a higher level of IT security including increased user awareness of the need for IT security which is achieved by giving each user its responsibilities and accountabilities for ensuring IT security. The purpose of the thesis is to present identity management scope, definition of key functionalities of the identity management systems and review of ITIL and CobiT guideline processes which refer to the identity management. Besides the presentation of the scope and the definition of key functionalities the main goal of the thesis is a practical display of Microsoft Forefront Identity Manager 2010 implementation which supports basic processes of employment and assignment of access to the company’s resources. The implementation itself contains configuration and implementation of metadirectory between the human resources system, directory service and Microsoft Forefront Identity Manager 2010, for which the implementation procedure of the basic employment, request and approval processes, is also described.
Actions (login required)