Dismiss
InnovationQ will be updated on Sunday, Oct. 22, from 10am ET - noon. You may experience brief service interruptions during that time.
Browse Prior Art Database

Method and System for Facilitating Reusable Assets for an Identity Manager

IP.com Disclosure Number: IPCOM000191779D
Original Publication Date: 2010-Jan-14
Included in the Prior Art Database: 2010-Jan-14
Document File: 3 page(s) / 23K

Publishing Venue

IBM

Abstract

A method and system for facilitating reusable assets for optimal deployment and maintenance of an identity manager is disclosed.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 42% of the total text.

Page 1 of 3

Method and System for Facilitating Reusable Assets for an Identity Manager

Disclosed is a method and system for facilitating reusable assets for an identity manager. The reusable assets are used for optimal deployment and maintenance of the identity manager. Additionally, the reusable assets are customized depending on the requirements of a user of the identity manager. The reusable assets may include, but are not limited to, Human Resource (HR) Feed Processing, On-boarding and Off-boarding Workflows, an ID Type Flagging, External Approvals, a Self Service User Interface, Recertification's, Adoption Rules for Orphan Accounts, a Batch Loader, Queuing and Load Balancing, and Performance Tuning. Further, each reusable asset includes one or more documents. These may be, but are not limited to, requirements of the reusable asset, use cases, architectural and detailed designs of the reusable asset, a steady state operational support manual, training material for support teams, an end user reference manual, Frequently Asked Questions (FAQs), and lessons learned.

In an exemplary scenario, the method and system disclosed herein facilitates following reusable assets for optimal deployment and maintenance of an identity manager:

A HR Feed Processing asset provides HR feed updates from a customer of the identity manager. The customer of the identity manager may be one of an employee, a contractor, or a business partner. Further, the HR feed updates are maintained in an identity management data store. The HR feed updates may be used by the identity manager deployment team for provisioning, authentication, authorization and notification purposes in order to decrease the deployment time in the identity manager. The HR Feed Processing asset handles adding, updating, terminating, suspending, and restoring the customer. Also, each customer is placed in an appropriate container based on HR feeds. Log entries are also created for all the processes.

An On-boarding and Off-boarding Workflows asset customizes workflows based on requirements of the customer to decrease the deployment time in the identity manager. It creates an identity manager account and Active Directory Account for each new employee on the HR feed upon on-boarding of the new employee. A line manager is notified with the new account details. Further, upon Off-boarding of an employee, all user IDs are suspended and transferred to the line manager. The On-boarding and Off-boarding Workflows asset uses a sample provisioning or de-provisioning policy setup and sample templates for workflows and email notifications.

In addition to the above, the identity manager receives a large number of ID requests from various users upon On-boarding of the users. A Queuing and Load Balancing asset may queue the ID requests between servers and balance the load based on identity parameters and response time so they do not timeout.

Further, in response to creating an...