SIM332 User Management Credential Management Common Platform Workflow Connectors Logging Web Service API Synchronization Group Management Policy Management Empowers People • Greater productivity through faster time to resolution • Provides Office-based self-service tools • Delivers SharePoint-based.

Download Report

Transcript SIM332 User Management Credential Management Common Platform Workflow Connectors Logging Web Service API Synchronization Group Management Policy Management Empowers People • Greater productivity through faster time to resolution • Provides Office-based self-service tools • Delivers SharePoint-based. 

SIM332
User
Management
Credential
Management
Common Platform
Workflow
Connectors
Logging
Web Service API
Synchronization
Group
Management
Policy
Management
Empowers People
• Greater productivity through faster time to resolution
• Provides Office-based self-service tools
• Delivers SharePoint-based consoles for information workers to manage identities,
access and credentials
Delivers Agility and Efficiency
• Reduces costs through automation and self-service
• Maximizes investments in existing identity infrastructure
• Integrates with familiar developer tools to enable new scenarios
Helps Improve Productivity and Compliance
• Integrates identity, credential, and access management
• Rich access, permissions and delegation model
• Enables system auditing and compliance
Forefront Identity Manger - Key Feature Areas
Policy
Management
Credential
Management
User
Management
Group
Management
User
Management
Credential
Management
Common Platform
Workflow
Connectors
Logging
Web Service API
Synchronization
Group
Management
Policy
Management
User
Management
Credential
Management
Common Platform
Workflow
Connectors
Logging
Web Service API
Synchronization
Group
Management
Policy
Management
Illustrative Topology
State
• Who is in group A?
• What groups does a particular
person belong to?
Current
• Who is person Y’s manager?
Source: FIM database via portal
Historic
• What groups did person A have
access to on November 4th, 2009?
• What was a group’s membership
last July?
Source: FIM Portal and Reporting
Events
• Who joined group A today?
• What groups had new members today?
• How many new people joined the
company today?
Source: FIM requests via portal
• Who joined group A on May 1st, 2010?
• How did a group’s membership change
over time?
• Who approved a group join?
• How did a set filter definition change over
time?
Source: FIM reporting
Report Class
Defined Over
Description
Membership
Change Reports
• Group Membership (SG +
DG)
• Set Membership
Contains membership changes, who
approved them, and the associated
request which generated the change.
Object History
Reports
•
•
•
•
•
Contains changes to key attributes over
time.
Users
Groups
Sets
Requests
Policy Rules
Account
Name
Operation
Type
Committed
Time
Group
Name
Request
Originator
cwilcox
Join Group
1/7/2011
14:27:02
Finance
FIM Service
kimaber
Join Group
1/3/2011
16:12:25
Sales
kimaber
cwilcox
Leave
Group
1/1/2011
08:58:02
Marketing
samanthas
Request
Approver
dparker
Request
ID
MPR that Triggered
the Request
{43edf…
}
All accountants have
access to financial
data
{81e2b…
}
User Name
User ID
Operation Attribute
Colin Wilcox
{732d2…} Remove
User
Colin Wilcox
{732d2…} Remove
Display Name
Colin Wilcox
{732d2…} Remove
Colin Wilcox
Value
Requestor Committed Time
Request
FIM
Service
2/13/2011 01:22:00
{532aa…
}
Colin Wilcox
FIM
Service
2/13/2011 01:22:00
{532aa…
}
First Name
Colin
FIM
Service
2/13/2011 01:22:00
{532aa…
}
{732d2…} Remove
Last Name
Wilcox
FIM
Service
2/13/2011 01:22:00
{532aa…
}
Colin Wilcox
{732d2…} Add
Manager
gfort
Garth Fort
9/22/2006 08:55:28 {8457b…
}
Colin Wilcox
{732d2…} Remove
Manager
samanthas
Garth Fort
9/22/2006 08:55:28 {8457b…
}
Colin Wilcox
{732d2…} Add
Employee
Type
FTE
Garth Fort
9/22/2006 08:55:28 {8457b…
}
Colin Wilcox
{732d2…} Remove
Employee
Type
Contractor
Garth Fort
9/22/2006 08:55:28 {8457b…
}
FIM Service DB
Staging
Repositor
y
Data Mart
Blue Section
http://www.microsoft.com/cloud/
http://www.microsoft.com/privatecloud/
http://www.microsoft.com/windowsserver/
http://www.microsoft.com/windowsazure/
http://www.microsoft.com/systemcenter/
http://www.microsoft.com/forefront/
http://northamerica.msteched.com
www.microsoft.com/teched
www.microsoft.com/learning
http://microsoft.com/technet
http://microsoft.com/msdn
Align
Experiences
Integrated Policy
Management
Put the right tools in the right hands
Deliver a great experience for developers, information workers, and IT pros
Provide a tightly integrated solution for policy management
Solve the spectrum of identity challenges with unified concepts and architecture
Extensible
Platform
Build an extensible platform for present and future IdM solutions
Takes full advantage of state of the art technologies such as Web Services standards, federation,
strong auth, and workflow
Enhance
existing
investment
Enhance existing IT investments
“Light up” Office, Windows, and System Center, and provide synergistic enhancements to other
connected systems