1 IAMaaS - Hitachi ID Systems · • Hitachi ID and partners offer defined-deliverables,...
Transcript of 1 IAMaaS - Hitachi ID Systems · • Hitachi ID and partners offer defined-deliverables,...
1 IAMaaS
Managing the User LifecycleAcross On-Premises andCloud-Hosted Applications
Delivering the Hitachi ID Suite as a hosted, managed service.
2 Hitachi ID Suite
© 2020 Hitachi ID Systems, Inc. All rights reserved. 1
Slide Presentation
3 Cloud options
There are three main variables:
How is the software procured? Purchase Lease
Where is the software installed? On-premises data center Vendor facility
Who performs day-to-day administrationand support?
IT organization Software vendor
Traditional on-premises SaaS
There actually 8 combinations:
• Purchased, on-premises, managed by vendor – managed administration service.• Purchased, cloud-hosted, managed by IT – IaaS.• etc.
Hitachi ID offers all 8 combinations.
4 Hosted on Amazon
• Hitachi ID relies on AWS to provide the runtime environment.
– Amazon responsible for physical, perimeter security.– Amazon provides OS and DB software licenses.
• EC2 VMs are deployed in at least two availability zones (AZs).
– AZs selected based on customer geography (North America, EU, etc.).– Instance size and number of VMs at Hitachi ID discretion.
• Customer instances are isolated from one another:
– Per-customer VLAN in each AZ.– Distinct EC2 VMs, SQL DB instances.– Separate and isolated application instances.
© 2020 Hitachi ID Systems, Inc. All rights reserved. 2
Slide Presentation
5 Managed by Hitachi ID
• Hitachi ID staff are responsible for installing and managing the service.• Daily health checks and ongoing monitoring is included.• Customers are responsible for user-facing support.• If there is reason to think the system is not working, customers escalate issues to Hitachi ID.
6 Based on Hitachi ID Identity Express
• Configuration of customer-specific policies, processes and integrations is still required.• Hitachi ID and partners offer defined-deliverables, fixed-price implementation services.• Hitachi ID Identity Express is used to minimize consulting fees and deliver rich process automation.
7 IAMaaS architectural overview
Firewall
Private Corporate
Network
Internet
Firewall Firewall
IAM App Server IAM Proxy
IAM Database
Mobile Proxy
Firewall
SaaS App
HR DB
AD
On-Prem. App
On-Prem. App
SaaS App
IAM App Server
IAM Database
Mobile Proxy
VLAN /
Location 1
VLAN /
Location 2
IaaS Provider
Network
© 2020 Hitachi ID Systems, Inc. All rights reserved. 3
Slide Presentation
8 IAMaaS portal access
Firewall
Private Corporate
Network
Internet
Firewall Firewall
IAM App Server IAM Proxy
IAM Database
Mobile Proxy
Firewall
SaaS App
HR DB
AD
On-Prem. App
On-Prem. App
SaaS App
IAM App Server
IAM Database
Mobile Proxy
VLAN /
Location 1
VLAN /
Location 2
IaaS Provider
Network
© 2020 Hitachi ID Systems, Inc. All rights reserved. 4
Slide Presentation
9 IAMaaS public URL access
Firewall
Private Corporate
Network
Internet
Firewall Firewall
IAM App Server IAM Proxy
IAM Database
Mobile Proxy
Firewall
SaaS App
HR DB
AD
On-Prem. App
On-Prem. App
SaaS App
IAM App Server
IAM Database
Mobile Proxy
VLAN /
Location 1
VLAN /
Location 2
IaaS Provider
Network
© 2020 Hitachi ID Systems, Inc. All rights reserved. 5
Slide Presentation
10 IAMaaS BYOD connectivity
Firewall
Private Corporate
Network
Internet
Firewall Firewall
IAM App Server IAM Proxy
IAM Database
Mobile Proxy
Firewall
SaaS App
HR DB
AD
On-Prem. App
On-Prem. App
SaaS App
IAM App Server
IAM Database
Mobile Proxy
VLAN /
Location 1
VLAN /
Location 2
IaaS Provider
Network
Smart Phone
© 2020 Hitachi ID Systems, Inc. All rights reserved. 6
Slide Presentation
11 IAMaaS target integration
Firewall
Private Corporate
Network
Internet
Firewall Firewall
IAM App Server IAM Proxy
IAM Database
Mobile Proxy
Firewall
SaaS App
HR DB
AD
On-Prem. App
On-Prem. App
SaaS App
IAM App Server
IAM Database
Mobile Proxy
VLAN /
Location 1
VLAN /
Location 2
IaaS Provider
Network
© 2020 Hitachi ID Systems, Inc. All rights reserved. 7
Slide Presentation
12 IAMaaS high availability and replication
Firewall
Private Corporate
Network
Internet
Firewall Firewall
IAM App Server IAM Proxy
IAM Database
Mobile Proxy
Firewall
SaaS App
HR DB
AD
On-Prem. App
On-Prem. App
SaaS App
IAM App Server
IAM Database
Mobile Proxy
VLAN /
Location 1
VLAN /
Location 2
IaaS Provider
Network
13 Pricing
• Per-user, per-month fee.• Paid in advance, annually.• Minimum commitment is 2 years, 80% of initial user count.• User count is allowed to grow up to 10% mid-year without a charge.
– Purchase additional seats mid-year if growth exceeds this.– Pay only for remaining months.
• Volume at renewal anniversary is based on trailing 12 month peak.
– Excluding temporary spikes.– Customers encouraged to purchase a buffer.
• Number of licensed seats may decline by up to 10%/year.
© 2020 Hitachi ID Systems, Inc. All rights reserved. 8
Slide Presentation
14 Version upgrades
• Hitachi ID will upgrade the software every 1–2 years.• Exact schedule at Hitachi ID discretion, based on release availability and relevancy of new features.• Hitachi ID coordinates the exact schedule of any required outage and migration with each customer.
hitachi-id.com
500, 1401 - 1 Street SE, Calgary AB Canada T2G 2J3 Tel: 1.403.233.0740 E-Mail: [email protected]
Date: 2020-03-23 | 2020-03-23 File: PRCS:pres