Andrej Habazin (2016) Identity Management Systems. EngD thesis.
Abstract
Identity management systems allow larger organizations management and control over resources, used by identites. Primarily, these systems maintain and enforce security and other organizational policies. Secondary task is to provide a framework for automation of repetitive tasks and self service processes, which allows a reduction of workload on helpdesk services and yet provides traceability for individual request. We’ll go through some of most important supporting security protocols, which ensure identity authentication and data protection, their principles, security assessment and most common vectors of attacks. In our work, we’ll present structure of two identity management systems, OpenIDM and Microsoft Identity Manager 2016, their advantages and disadvantages when it comes to connecting with backend systems within organization, installation and implementation of the system on problem domain, introduction and maintenance of the system for identity management. Additionally, we’ll evaluate integration with both OpenLDAP directory and PostgreSQL database. Both systems are developed in accordance with open source philosophy therefore they’re interesting for implementation in order to reduce costs of using licensed software. PostgreSQL database will be used as an identity data source. User accounts will be created in OpenLDAP based on the data from PostgreSQL.
Actions (login required)
![[img]](http://eprints.fri.uni-lj.si/style/images/fileicons/application_pdf.png)
