EA-STD-015 Identity Provider

Architectural Classification

Technology \ Security

Standard Specification

 

A Federated Identity service is designed to afford a person the ability to use the same user name, password or other personally identification to access multiple applications or data sources securely and seamlessly be relying on the identity provider’s authentication process.  The Federated Identity service is enabled through the use of open industry standards and/or openly published specifications.

 

Baseline (Today) Emerging (To track)
  • Active Directory
  • LDAP
  • Forefront Identity Manager 2010

 

  • Microsoft Identity Manager
  • Courion
  • Gemalto
Tactical (0-3 years) Strategic (3-6 years)
  • Active Directory
  • LDAP
  • Forefront Identity Manager 2010
  • Microsoft Identity Manager

 

  • Active Directory
  • LDAP
  • Federated identity software
  • Role Based Access Control (RBAC)

 

Retirement (to be removed) Containment (No new development)
  • Apple Open Directory

 

 

Author: Paul Ferrier Date: 24/10/2014 Version: 1.0
Document Security Level: PUBLIC 
Document Approvals: Technical Architecture Group

Enterprise Architecture Practice

Enterprise Architecture Board

IT Director

 

02/06/2014

June 2014

23/07/2014

23/10/2014

Review Date: October 2015

Identity Provider Roadmap

Identity Provider