Identity management covers all processes and systems used to manage the entire life cycle of identities. This also includes the authentication methods used and authorisation details such as roles and authorisations. The purpose of identity management is to harmonise these processes across different systems. It handles the identification of individuals in a system that makes resources available – specifically when not every user is to have equal access to all resources.
Identity management can be used to determine
The Nevis Identity Suite offers a highly flexible solution for managing customer and partner identities with all associated information such as login data, roles, authorisations and applications. The Nevis Identity Suite lets you centralise the management of all users, roles and authorisations for your business applications. It also allows you to seamlessly roll out single-sign-on and multi-factor authentication for your customers and partners.
The unique user data model and the authorisation model are optimally matched with one another. Advanced B2B and B2C application scenarios such as segmented partner and agency models or family accounts are thus extremely straightforward to realise.
Another unique feature is the ability to handle multi-tenant setups with separate management functions for separate user groups. This means you only need one management solution to cover multiple user populations simultaneously. For example, you can administer several brands in the same system while managing the customers of the different brands separately and independently of each other.
Users can deploy the Identity Suite APIs to integrate self-service functions for their customers and partners, for example, resetting passwords for the customer portals.
The Nevis technical architecture provides extensive functionalities that meet the highest compliance standards such as Identity Repository, User Management, User Self-Service, Delegated Administration and Identity Synchronization. Not all these properties are directly visible to the end user, but all make an important contribution to efficient and compliant identity management.
The Identity Repository is a core element of the Nevis Security Suite and contains identity data and assigned identity attributes.
The Identity Repository can be scaled up to support millions of users and is used in the production environment of Switzerland’s largest bank by customer number. The Nevis Security Suite supports Oracle as well as MariaDB as database back ends for the Identity Repository.
Other properties of the Identity Repository:
User Management allows administrators to manage the identities of users – using either REST-APIs or a powerful web user interface. Companies manage identities in different phases.
Identities must be:
Administrators can manage all identity elements:
Delegated User Management
Delegated user management lets you create a hierarchy of user and role administrators to suit the specific requirements of your organisation. This allows responsibility for managing users to be delegated to specific administrators, who are only granted restricted access so that they can only process the organisational parts for which they are responsible.
User self-service includes all functionalities that allow a user to perform actions and activities in the identity system without the help of an administrator, such as:
The CIAM system makes this functionality available as an API. This is then embedded as part of other portal functions and does not serve as an isolated function.
Self-Service Profile Management
Profile management can contain many functions depending on requirements. Examples of profile management functions include:
Identity synchronisation affects all application scenarios in which identity attributes must be replicated or synchronised across different information systems.
Why do we need identity synchronisation?
In an ideal world, a company would only have one system that contains all information about identities such as names, telephone numbers, roles, authorisations, credentials, etc.
However, identity information is frequently fragmented across different systems and must be copied from one system to others. This is where Identity Synchronization comes into play by combining different information assets from different master systems.
Identity management applications from Nevis boost the security and productivity of companies. They also contribute significantly to reducing internal costs and expenditure on security.
We all know how tiresome it was having to use a different password for every user account. With SSO, it will now be possible to authenticate yourself conveniently once for different web portals. Ease of use is a key factor that influences customer loyalty – and SSO has a major role to play in making your offering attractive to customers.
Single sign-on gives your employees rapid access to all the information they need for their work – so they have more time to look after the things that really matter.
The fewer passwords in circulation, the less time your IT helpdesk must spend dealing with password problems. This will save you more time and money than you might have thought possible!