Identity & Access Management

With a large proportion of security incidents being able to be attributed to existing or former staff, controlling system access within an organisation is a key requirement to the security of any organisation’s data and systems.

ASG’s Identity & Access Management practice provides a unified, integrated security solution designed to manage user identities, provision resources, secure access to corporate resources and support governance as well as compliance across the organisation.

The ability to centrally manage access to different applications and systems.

The process of a user proving who they are. Normally achieved by identifying themselves with a username and password.

Generating a user identity/account for an application or directory. This may entail the combination of automatic provisioning and generated workflow approvals to granting access to applications, systems and physical items e.g. mobile phones, computers, building access cards, etc.

A central directory utilised for the storing of identities and passwords. The directory provides a repository for the single user identity. This is normally an LDAP directory e.g. Oracle Internet Directory, Active Directory, Novell E-directory, etc.

The ability to grant access to external parties such as suppliers and customers, using credentials stored by the external party’s directory/identity store in a pre-configured trust relationship.

A mechanism to allow users to authenticate once, and then have access to all the company’s applications they have been granted without having to re-authenticate again. SSO prevents problems with users having to remember multiple user names and passwords.

DAS provides the ability to share the user administration tasks within the organisation. Instead of relying on one central administration team the tasks are delegated within the organisation.