Deepak Sharma - Identity and Access Management

8/8/2019 Deepak Sharma - Identity and Access Management

1/22

New Generation Consultants, Inc

Identity And Access Management Overview

Friday, Feb 27th, 2008 3.00 PM 3.40 PM CST


2/22

Oracle Certified Partner

Founded 2001

HQ in Des Plaines; branch in Chennai 6 Practice Areas

Data and Process Integration

Introducing New Generation Consultantswww.newgenusa.com

Decision Support Enterprise Applications/OBAs

Infrastructure Design, Deployment, Support

Managed Services Education and Training

Drawing at end of todays presentation!

2


3/22

Identity And Access ManagementBuilding an enterprise altogether

Agenda

State Of the enterprise and challenges

Identity and Identity Management : Overview

Business drivers for IAM implementation A Glance at Oracles IAM suite

Infrastructure of a complete IAM implementation

Business and Technology advantages of IAMQuestions and Answers

Audience

Anyone who wants his/her companies to be successfulnot only today but be ahead in the future as well.

Users who want a very easy life dealing with UserIds,passwords and identity and access related issues.

3


4/22

Identity And Access ManagementWhat is Identity Management: Overview

Identity

Who the user is

What is he entitled to

When is he allowed toperform specific Functions

Why has the user been

granted permissions

Identity Management

Establishes the identity Describes the identity

Follow identity activity

Destroys the identity 4


5/22

Identity And Access ManagementState Of an IDMless Enterprise

Costs Of Compliance User IDs and passwords

Access Control not controlled

5


6/22

Identity And Access ManagementAnother IDMless enterprise

6


7/22

Identity And Access ManagementEnterprise equipped with IDM solution

7


8/22

Identity And Access ManagementOracle IAM Suite

AccessAccess

ControlControl

DirectoryDirectory

ServicesServices

IdentityIdentity

AdministrationAdministrationOracle Access ManagerOracle Access Manager

Oracle EnterpriseOracle EnterpriseSin le Si nSin le Si n--OnOn

Oracle Virtual DirectoryOracle Virtual Directory

8

Oracle Identity FederationOracle Identity Federation

Oracle Web ServicesOracle Web ServicesManagerManager

Oracle Identity ManagerOracle Identity Manager Oracle Internet DirectoryOracle Internet Directory(with Directory Integration(with Directory IntegrationPlatform)Platform)

Oracle Identity & Access Management SuiteOracle Identity & Access Management Suite

Audit & ComplianceAudit & Compliance


9/22

Identity And Access ManagementOracle Identity Manager

Identity and Role administration.(user and groupmanagement, self-service functionalities for users, and

delegated administration) Approval and request management.

Technology integration and Adapter

ac ory.

Increased security.

Provisioning (approval and request).

Improved business responsiveness.

Reduced costs and Streamlined operations.

Policy-based entitlement management.

Reconciliation and attestation support(for audit, regulatory,

and compliance purposes). 9


10/22

Identity And Access ManagementOracle Access Manager

Automates Identity and Access

Management.

Strengthens security and eliminates

latency.

Streamlines artner inte rations.

Integrates with strategic applications.

Ensures enterprise-wide

interoperability.

Enables regulatory compliance. Provides single and multi-domain

Single Sign On solutions.

10


11/22

Identity And Access ManagementOracle Internet Directory

Supports transparent data encryption.

Directory integration and provisioning

platform(DIP).

VSLDAP certified and EAL4 compliant.

RDBMS backend which rovides

proven scalability and performance.

External authentication plugin for

authentication against AD, Novell, SUN and Open LDAP.

Replication and High availability using multi master andOracle AS clusters.

Server extensibility using Java and PL/SQL plugins.

11


12/22

Identity And Access ManagementOracle Virtual Directory

Single Interface for Identity.

Unify Identity data without

consolidation. Re-Use Identity data without

copying.

Provide LDAP interface todatabase and web services.

Directory Proxy and Firewall.

LDAP and Database adapters. Reduce number of Identity stores.

Improve security and compliance.

12


13/22

Identity And Access ManagementOracle Identity Federation

Support for SAML 2.0, Liberty ID-FF 1.x andWS-Federation.

Can be deployed both as a

identity or service provider.

Load balancing and failover

support. Integrates with 3rd party identity

and access management solutions.

Oracle Database, OID, MicrosoftSQL-Server, Microsoft AD and Sun Java System Directory

Server.

13


14/22

Identity And Access ManagementOracle Adaptive Access Manager

Authentication Security Virtual Hardware devices,smartcards, biometrics, X.509 certificates and LDAP.

Risk Analytics Based on IPs,

Geo-Locations and network data.

Behavior Profiling Evaluates

user behavior against his own history Fraud investigation and forensics.

Fraud intelligence

14


15/22


16/22

Identity And Access ManagementGartner Magic Quadrants

Oracles offering of IAM products now pushes ahead of other IAM competitors such asBMC, Computer Associates International, Hewlett-Packard, IBM, Microsoft, Novell andSun Microsystems - Roberta Witty, Gartner

16


17/22

Identity And Access ManagementBurton Group endorsement

Oracle's acquisition of Thor and OctetString is a good move. These acquisitions coupledwith Oracle's unique application top down approach to Identity Management will sendripples through the industry.- Mike Neuenschwander, Burton Group

17


18/22

Identity And Access ManagementThe Forrester Wave

The Forrester Wave: Identity And Access Management, Q1 2008Oracle Emerges As Leader, With IBM, Sun Microsystems, Novell, And CA Close Behind

Forrester evaluated leading

identity and access management

(IAM) vendors across 117 criteria

and found that Oracle has

established itself as the IAM

market Leader due to its solid

technology base across the IAM

landscape and its compelling,

aggressive strategy around what

it refers to as application-centricidentity.

18


19/22

Identity And Access ManagementBusiness Benefits

Reduce security risks with ease of usage

Ensure compliance with corporate policies and regulatory

requirements Dramatically reduce the cost

of providing and managing

access to valuable corporateResources.

Increase productivity and

Operational efficiency

Enable IT to be more

responsive to evolving business requirements

Increased partner integration19


20/22

Identity And Access ManagementA demand of the future

Users will ask for more security of their identities.

Users will demand more control over identities(CardSpace and

OpenID). Businesses will not survive without federations(Eg. Shibboleth)

IAM will save huge number of dollars from the help desk.

IAM will save phenomenal manual efforts and dollars spent inAudit and Compliance.

Identity management isn't something transient it's not a fad,

nor will it go away. It's here to stay and it's decidedly not gettinany easier. Address it now, and you'll be ahead of the game.

Dave Pickens

Principal Engineer Sun Microsystems 20


21/22

Identity And Access Management

21

References:-www.gcoug.org/presentations/Oracle%20AIM_JUNE_2006.PPT by Rafael Torres

http://soug.acomp.usf.edu/TechDay2008/Bill_Nelson-IdentityManagement.pdf by Bill Nelson


22/22

Thanks for Supporting NCOAUG

For more information contact:

Eugene Breger847-331-5554

[email protected]

EMPOWER Your Business

2400 E Devon AvenueSuite 266

Des Plaines, IL 60018

Documents

Deepak Sharma - Identity and Access Management