Post on 16-Oct-2021
Conference 2018
BCNET Identity & Access Management Community of Practice
Shift into the future with predictions for Identity & Access Management
Conference 2018
Panelists:
2
Corey Scholefield
Vera Merkusheva
Isabel Wong
Sabrina da Silva
Banner Schools Colleague Schools
Institutional ERP snapshot
PeopleSoftUNIT4 Finance Custom Solution
Institutional ERP snapshot
Conference 2018 5
Integration libraries
Custom scripts
APIs
Vendor IDAM Solutions
Microsoft Solutions
Identity & Access Mgmt. Solutions
Open-source Solutions
LDAP Directory
Conference 2018 6
Conference 2018 7
Prediction #1 – Access Management Software or Services
Conference 2018 8
¡ Thompson Rivers University Identity Management solutionv IDM is largely manual
v Authoritative Sources for Identities: Banner ERP
v Some access managed through AD groups
v Semi-automated account life cycle triggered by events in Banner, such as student registration, employee hire/termination, etc.
v Automated account provisioning/deprovisioning for a very few systems
v Single set of credentials for the most systems achieved through Single-Sign-On and Same-Sign-On
TRU – Identity Mgmt. Support
Conference 2018
TRU – Identity Mgmt. Support
9
¡ CAS / Shibboleth SSO implementationv Ellucian Ethos Identity (CAS, WS-Federation)
v Banner 8 Applicationsv Banner 9 Applicationsv FAST reportingv SharePoint v eBallot voting (SAAS)
v Shibbolethv Linda.comv BCNET Wikiv DreamSpark
Conference 2018 10
¡ 2010 to 2018
v Identity System of Record: ERP - Bannerv IDM : NetIQ project – started deployment in 2010, finished in
2012 v Business Drivers:
vConsolidate multiple ID’s into single ID vAutomate account life cycle management based on Banner
employment and student registration activitiesvAutomate provisioning of network drives for employees and
students
Langara - Identity Mgmt. Support
Conference 2018
Langara - Identity Mgmt. Support
11
¡ CAS / Shibboleth SSO implementationCAS:
v Home grown IDM account status tool
ADFS/Shib:v Lynda.com
v UPASSv FluidSurveyv SurveyMonkey
v Simplicity Advocatev AWS for student course work
v Email Archivev eScribev RightAnswer KCS
v ..and all future cloud applications
Azure AD:v O365v Dynamics 354 (CRM for IE, coming)
Conference 2018 12
Prediction #2 – IDaaS Access Management Delivery Model
Conference 2018 13
Prediction #3 – Replace Manual Access Certification Requests
Conference 2018 14
Prediction #4 – Data Access Governance
IGA – Identity Governance and Administration
Identity Systems of Record
IdentityMiddleware
Downstream Systems
Ellucian Banner - ERP Continuing Studies - SIS
Active Directory
LDAP
Enterprise Applications
Aggregate Account Info!Provision Directory Entries + Static / Dynamic Groups
NetLink
IDENTITY WAREHOUSE LIFECYCLE MANAGER
AUTOMATED PROVISIONING ACCESS CERTIFICATION
IDENTITY GOVERNANCE PROGRAM
Conference 2018 16
Forecast #1 - Reasons for replacing existing IAM solutions
Conference 2018 17
Forecast #2 - New modules in 2017 to 2018
Conference 2018 18
Questions?
¡ Corey Scholefield coreys@uvic.ca¡ Vera Merkusheva vmerkusheva@tru.ca¡ Isabel Wong iwong@langara.ca¡ Sabrina da Silva sabrina_da_silva@sfu.ca