Embedded Files
Corporate identity management is a broad field that includes several aspects.
Corporate identity management is a broad field that includes several aspects.
Governance
Governance
The organizational model for identity and access management structures the relationships between the various stakeholders in the company.
Governance influences the distribution of tasks, responsibilities, powers and modes of communication .
Identification
Identification
The challenge of identification is to provide a reliable reference identity for a person.
The creation of a reference directory is important to facilitate the establishment of effective identity and access management.
Authentication
Authentication
The challenge of authentication is to guarantee the legitimacy of access to a resource
Authentication can be based on a central SSO platform
Habilitation Model
Habilitation Model
Empowering means giving the right rights to the right person
Implementation
Implementation
Implementing means putting in place the tools and services that facilitate operational efficiency
Control
Control
Granting a right to a user is easier than removing it .
We have more than 10 years of experience in setting up an authentication and authorization platform for large web applications of the company's information system for a large international company.
This implementation is based on the open source CAS solution and the following improvements have been made
The information system having spread over several sites, communication between the identification servers was introduced.
In order to improve the resilience of the identification system, a 'Failover' mechanism was implemented in the agents introduced in the applications.
This same company being a SAAS (Software as a service) solution provider for its customers, we studied and then implemented a solution based on the same open source CAS solution.
This solution is based on a dedicated infrastructure and completely isolated from the enterprise information system.
In this solution we have added the processes of registration of the users by themselves as well as the management of the password by the user himself.
This solution embeds the same communication between the servers as well as the resilience failover mechanisme in the application agents.
This solution being faced on the Internet, security components have been added to prevent any attacks.
Report abuse