Our client is one of the largest educational institutions in the Kingdom serving over 40,000 students and 13,000 employees with over 20 IT applications which requires a sophisticated security scheme.
Our client requires integrating major application to use Single Sign-On which will allow users to use their university ID to access all systems they are authorized to access.
Our client’s IT infrastructures have numerous applications on heterogeneous hardware and software platforms. This increases the cost and complexity of user identity and access management through the lifecycle of the user account. The issue is complex: from bringing in a new employee/contingent worker/student and granting access to required systems and applications to termination of an employee and removing access to maintain the integrity and security of data and systems. Moreover, there are activities such as password resets, changes to the account, and changes to permissions, requesting new IDs, deleting old IDs, and more needed during the life of the user account. These are further complicated by the need or requirement to conform to a set of security standards and auditing requirements.
To overcome the above issues, we implemented a secure Oracle Identity and Access Management solution to better manage user IDs and access of client users.
The solution is rolled out to meet Enterprise-wide security, auditing requirements and to reduce the administrative costs of managing the solution by providing an easy-to-use interface for support personnel and self-service capabilities to client end-users.
Following are key activities workMETHODS performed.
We leveraged the out-of-the-box connectors which Oracle provides for key applications. Few of the connectors were based on web services and flat files. We used such connectors as a baseline and customized them for each of following application.
Enhanced Security
Lower chances of data breaches
Improved User Experience
Regulatory Compliance
Reduced IT Costs
Simplified Access Requests
Automated Provisioning
Guaranteed De-Provisioning
Advanced Role Lifecycle Mgmt.
Simplified Identity Certification
Simplified Web SSO
Authentication
Single Single-On
Mobile Authentication
Advanced Session Mgmt.
Identity Federation
Comprehensive Auditing