150 likes | 350 Views
Mastering the Art of Identity Management. Harry Nicholos Christine Schoaff. Agenda. NC State Identity Management Purpose Efficiency & Comparison Overall Communication Schedule Identity Management as “art” What identity management is How identity management helps you
E N D
Mastering the Art of Identity Management Harry Nicholos Christine Schoaff
Agenda • NC State Identity Management Purpose • Efficiency & Comparison • Overall Communication Schedule • Identity Management as “art” • What identity management is • How identity management helps you • How identity management helps NC State • Dialog and Conversation
What is art? • 21st century disputes • Cooking, medicine = science + art • Identity Management • Its programmable technology is a scientific aspect • Its creative implementation is an artistic aspect • The data that describes identities remains with the data owner (HR, R&R, etc.)
What identity management is • How identity management helps you • How identity management helps NC State
How identity management helps you A number of attributes can be used to describe you in various contexts – Different units and systems provide the values for various attributes:
Describe you by what are called attributes A number of attributes can be used to describe you in various contexts:
Describe you by what are called attributes A number of attributes can be used to describe you in various contexts:
Describe you by what are called attributes A number of attributes can be used to describe you in various contexts:
Describe you by what are called attributes A number of attributes can be used to describe you in various contexts:
Share only appropriate attributes • NC State Libraries might only need to know that: • You’re a student, faculty or staff member (HR or R&R owned data) • Enrollment Management & Services’ graduation department might only need to know that: • You’re a senior • You’re in the College of Management • You’re a financial aid recipient • NC State unit might only need to know that: • You’re the chancellor • NC State Retirement programs might only know need to know that: • You’re a faculty or staff member • You’re contributing and vested in TSERS • You’re eligible for full retirement
Customize your access to specific resources • NC State Libraries knows you’re a student, faculty, or staff member • You can check out books from the library (Faculty, staff or student) • You can use proprietary information resources such as Gartner Group and IEEE Xplore (Faculty, staff or student) • You can put books or articles on reserve (Faculty) • Enrollment Management & Services knows you’re a senior, in the College of Management, and a financial aid recipient • You should be sent a reminder to register for graduation • You should be made aware of your financial aid repayment schedule • NC State knows you’re the Chancellor • You can sign all contracts as part of NC Gen. Stat. 116-34(a) Section 502A • You can approve an appointment, reappointment, and a salary increase • NC State Retirement system knows you’re a vested faculty or staff member who is eligible for retirement • You can notify your department of your intent to retire • You can select your retirement benefit payment option
How NC State benefits from good Identity Management • Improves security and privacy by sharing only what’s necessary when necessary • Provide “one version of the truth” from various sources • A single, authoritative access point for data provided by others • Simplifies administration by eliminating the maintenance of distinct identities for separate resources • Streamlines deployment of new university processes, because the identity is already in place • Allows efficient sharing of resources within and beyond the university
Current Efforts • Replace aging infrastructure -- December 2012 • Program Interaction Efforts-- On-going • Level-set with ideas and terms, identify business processes, attributes • Gather information on pain points and areas for improvement • Work with Units and IT Governance to review and prioritize efforts • Oracle Identity Management Application Suite • Phase One – December 2012 • Four major areas • Potential new features include lists created based on attributes and business processes tied to attributes such as library access and keys. • Phase Two June 2013 • Prioritized based on input and IT Governance – IDM Working Group