Our solutions in the field of identity management allow us to create a holistic environment for managing digital identities, both for ordinary and privileged users.
One of the biggest challenges related to IT security is the proper process of account and privilege (access) management. According to the best practices, the principle of the so-called least privileges should be observed, which means that accounts should be active at a time when there is a need to use them, while the level of user's privileges should result from the actual functions that he or she performs.
It enforces the functioning of the following processes:
In many organisations, this process is performed without the use of dedicated automation tools, which can lead to:
The vast majority of companies and organisations continue to use manual methods of management of access to IT system resources. Creating an account for a new employee, modifying privileges, blocking or deleting an account is still a process that requires the participation of many people and tools. It generates increased costs related to human resources (in IT/Security teams), but it does not guarantee the appropriate level of security management (mistakes, delays and other issues may occur in a manual process).
Meanwhile, we have proven and very efficient solutions at our disposal, which are called Identity Management Systems (IDMs), as well as additional supporting systems, which make it possible to automate the entire process of management of privileges the user has in an IT system.
In order to address identity management comprehensively, all key areas of that process need to be addressed:
The solutions offered by APIUS meet all the abovementioned features and are based on four basic elements:
1. NetIQ Identity Manager – a comprehensive IDM-class system for managing accounts and privileges, which addresses three key areas:
2. NetIQ SecureLogin – a system enabling carrying out of a single sign-on process (SSO) in all systems used by the organisation.
3. PingIdentity PingFederate – FIM-class system allowing to create an identity management federation (e.g. when the database of identities is divided between two entities).
4. Liebermam RED – PIM-class system allowing to manage privileged accounts/access.
Identity Management Systems (IDM) – they constitute proven and very efficient solutions enabling automation of the whole process of management of privileges the user has in an IT system.
Our portfolio of solutions allows for effective and comprehensive supervision of digital identities throughout their life cycle, in particular by offering:
Obviously, the selection of specific tools will depend on the specific processes implemented in a given organisation.