TIM vs TAM

SHIN DEOCK YONG

TIM Tivoli Identity Manager is a policy-based identity

and access governance solution that helps automate lifecycle management of user roles, identities and access rights.

Through the use of roles, accounts, and access permissions, Tivoli Identity Manager helps automate the creation, modification, and termination of user privileges throughout the entire user lifecycle.

TAM Tivoli Access Manager for e-business is a single

sign-on (SSO) solution that authorizes and authenticates user access to Web and other hosted applications.

Tivoli Access Manager for e-business software is a highly scalable user authentication, authorization and Web SSO solution for enforcing security policies over a wide range of Web and application resources. It centralizes user access management for online portal and business initiatives.

STORY A

TIM

STORY B

TAM

STORY A + B

TAM TIM

IDENTICAL Create user ID (or account) and password for

target (or resource) Control user access permission for target Manage user ID and Password Manage user IDs by group and role Policy based security control Using LDAP as user registry

UNIDENTICAL

TARGETS ID CREATION TECHNICAL APPROACH BUSINESS SCOPE

TIM Any application that requires user ID

Create physical user ID for targets (*multiple user ID will be created per TIM user)

Adapter based To manage user IDs (profiles) for target applications

TAM Only Web servers (e.g. WAS, IIS, and Apache)

Create a SSO user ID for targets (one user ID will be created per TAM user)

Reverse proxy (no adapter)

To implement the SSO for Web servers

*number of targets

CONCLUSION

TIM is Not TAM

TAM is Not TIMAnd / Or

1 2 3 4 5 6 7 8 9