Thursday Jun 19, 2008

Do we need to clean up our mess before using a compliance product such as Sun Java System Role Manager ?

When it comes to using a compliance product, in order to prove compliance - your identity data has to be in a compliant state.
(it can't have any role/rule-based SOD violations, Certifications must be completed without outstanding revocations, etc ...).
Once your data is in order, opening up this quality type information to outsiders through techniques of provisioning or ideally federation could be the next step.
However, growing into a compliant state is a process and not just an action.
By that I mean that a product such as Sun Java System Role & Compliance Manager no only proves the compliant state, but helps you get there from the early messy state your data is in.

By using the ability to import external identity data, create, mine and manage business & IT roles, repeat review cycles at role/user and/or application level, the product allows you clean up your data, ending up with proper roles and properly linked users and entitlements, and manual workflow driven review mechanism that allows your data owners and line managers to review current assigned entitlements and verify the validity of them.   In case of violations, remediation can be triggered either via e-mail or via external provisioning solutions such as Sun Java System Identity Manager.

Compliance is therefore a constant running process that ensures the quality of your data becomes optimal, and stays optimal through a typical set of lifecycle operations on the involved identities.

More information on the product can be found at : http://www.sun.com/software/products/rolemanager

Friday Jun 13, 2008

Identity Manager 8 ready to ship

Don't tell you heard it from me, but it seems Identity Manager 8 is already available for download.

http://blogs.sun.com/IdentityCrisis/date/20080610

I'm pretty excited about this new release as it finally brings n-level RBAC support with unlimited types of Roles to the famous Identity Manager product.
One can now out-of-the-box define business roles, it-roles, asset roles, profile roles, ... conditionally assign roles to each other, nest these roles, manually assign any type of roles via approval workflow, assign entitlements and resources to these roles, assign identity attributes to them etc ...

Have a play with the product, check out the release notes, and read the updated documentation.
http://docs.sun.com/app/docs/coll/1514.5?l=en

About

Bert Van Beeck is a Senior Software Architect at Sun Microsystems, specialized in Sun's Identity Management portfolio. He's part of the Northern European pre-sales software team.

Search

Archives
« April 2014
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today