User Account Management

User Account Management A high level overview of its history & current development

2006: RBAC (Under Development) WAR DB Roles DB Real Time Windows GUI managing Multi-Platform Enterprise-Wide O/S and Application Accounts O/S Windows Subscriber DB UNIX OpenVMS OS400 2002: WAR DB added Subscriber DB 1992: to present day • Purpose: • Assign ownership of accounts to employees • Provide defaults during ‘Create’ • Synchronize with HR DB • HR changes automatically updated in A/D • Purpose: • External API to SAcM (via DB entries) • Background processing of User Account Requests • Purpose: • Simple (Web-based) U.I. • Access Permissions controlled via “Role Membership” • End Users can make & track Requests

Roles Based Access Control • Maintains the links between ‘Subscribers’ and ‘Role Memberships’ • Controls and tracks ‘Request Life-Cycles’ • Meta Data describes how to fulfil requests • Authorized ‘User-Groups of Approvers’ • Approved Requests fulfilled via WAR DB • Daily reconciliation between Role Membership & Target severs

RBAC Request - Cycles • Request • Notify (seek approvals) • Approve • Fulfil • Notify (results) • Track • Audit • Delegate & Manage

User Account Management