IBM Case Studies A large state agency Reduces administrative demands by 80 percent with IBM ID Management system

Edit This Case Study Record

	A large state agency Reduces administrative demands by 80 percent with IBM ID Management system IBM

A large state agency Reduces administrative demands by 80 percent with IBM ID Management system

IBM

Technology Category	Application Infrastructure & Middleware - API Integration & Management
Applicable Industries	Cities & Municipalities
Applicable Functions	Business Operation
Services	System Integration
Challenge	The security architect for a large state agency was faced with the challenge of managing access for over 5,500 state employees and 5,000 partner organizations interacting with its systems. The agency's security infrastructure had to govern user authentication, authorization, password management, provisioning and more for each application. In addition, various users also needed access to the agency’s network, file shares, active directory distribution lists and group shares. For many applications and IT systems, manual processes governed requests and authorizations for access, which could take weeks for users to get access to the systems or the resources they needed to do their jobs. Read More
About Customer	The customer in this case study is a large state agency in the United States. The agency is composed of five state agencies, which are further divided into 13 departments. The agency employs approximately 5,500 employees and interacts with over 5,000 outside partner organizations. The agency's systems environment is characterized as the 'Wild West of IT' due to the complexity of managing access and security for hundreds of systems. The agency's security infrastructure must govern user authentication, authorization, password management, provisioning and more for each application. In addition, various users also need access to the agency’s network, file shares, active directory distribution lists and group shares. Read More
Solution	The agency implemented an IBM identity management system, supported by several IBM software solutions, to secure their systems. The IBM Security Access Manager for Web, IBM Security Identity Manager and IBM Security Access Manager for Enterprise Single Sign-On virtual appliances were used to support the agency’s identity management platform. The Security Access Manager for Web appliance provides runtime authentication and authorization while the Security Identity Manager appliance provides the back-end user provisioning and deprovisioning platform. The Security Access Manager for Enterprise Single Sign-On appliance allows users to automatically log in to all of their systems and applications using one ID and password. The IBM identity management system automatically handles deprovisioning based on inactivity, employee termination and job transfers, which increases the security for agency applications while minimizing the cost of having administrators pull reports and manually deprovision users. Read More Log in to view content
Contents

Technology Category

Application Infrastructure & Middleware - API Integration & Management

Applicable Industries

Cities & Municipalities

Applicable Functions

Business Operation

Services

System Integration

Challenge

The security architect for a large state agency was faced with the challenge of managing access for over 5,500 state employees and 5,000 partner organizations interacting with its systems. The agency's security infrastructure had to govern user authentication, authorization, password management, provisioning and more for each application. In addition, various users also needed access to the agency’s network, file shares, active directory distribution lists and group shares. For many applications and IT systems, manual processes governed requests and authorizations for access, which could take weeks for users to get access to the systems or the resources they needed to do their jobs.

About Customer

The customer in this case study is a large state agency in the United States. The agency is composed of five state agencies, which are further divided into 13 departments. The agency employs approximately 5,500 employees and interacts with over 5,000 outside partner organizations. The agency's systems environment is characterized as the 'Wild West of IT' due to the complexity of managing access and security for hundreds of systems. The agency's security infrastructure must govern user authentication, authorization, password management, provisioning and more for each application. In addition, various users also need access to the agency’s network, file shares, active directory distribution lists and group shares.

Solution

The agency implemented an IBM identity management system, supported by several IBM software solutions, to secure their systems. The IBM Security Access Manager for Web, IBM Security Identity Manager and IBM Security Access Manager for Enterprise Single Sign-On virtual appliances were used to support the agency’s identity management platform. The Security Access Manager for Web appliance provides runtime authentication and authorization while the Security Identity Manager appliance provides the back-end user provisioning and deprovisioning platform. The Security Access Manager for Enterprise Single Sign-On appliance allows users to automatically log in to all of their systems and applications using one ID and password. The IBM identity management system automatically handles deprovisioning based on inactivity, employee termination and job transfers, which increases the security for agency applications while minimizing the cost of having administrators pull reports and manually deprovision users.

Impact #1	The IBM identity management system provided a hands-off way to secure systems.
Impact #2	The system allowed users to automatically log in to all of their systems and applications using one ID and password.
Impact #3	The system automatically handled deprovisioning based on inactivity, employee termination and job transfers, which increased the security for agency applications.

Impact #1

The IBM identity management system provided a hands-off way to secure systems.

Impact #2

The system allowed users to automatically log in to all of their systems and applications using one ID and password.

Impact #3

The system automatically handled deprovisioning based on inactivity, employee termination and job transfers, which increased the security for agency applications.

Benefit #1	80% reduction in administrative staff demands
Benefit #2	Reduces provisioning times for new employees from weeks to hours
Benefit #3	Increases application security by automatically de-provisioning employees based on inactivity

Benefit #1

80% reduction in administrative staff demands

Benefit #2

Reduces provisioning times for new employees from weeks to hours

Benefit #3

Increases application security by automatically de-provisioning employees based on inactivity

Download PDF Version

Overview

A large state agency Reduces administrative demands by 80 percent with IBM ID Management system

Operational Impact

Quantitative Benefit