Scribing Template --Thursday, Oct 4, 2012 at 2:15pm -- Salon 3

IDM as a Service

CONVENER:  Renee Shuey

SCRIBE: David Cohen

# of ATTENDEES:  32

MAIN ISSUES DISCUSSED:

Organization:

Two possible models:

1. CIO

  - Identity Management Group (does all functions)

2. CIO

  - Business Policy, Service, BPA

  - Development

  - Integration

  - Infrastructure

Concern: operations vs. development - highly skill developers interrupted by operational tasks, not enough staff to do development.

Solutions:

    - Self Service.

    - Offload operational tasks to Help Desk (through training and applications)

    - Implement ITIL? 

    - IDM in the cloud - could majority of technical work be offloaded?

Governance - is it needed?

  - Some universities have had success building governance groups distinct from IT to do IDM priority setting.  

  - Others have had success with more limited governance. 

  - Plays several roles: transparency, priority (resource allocation), authority (data ownership).

  - Can drive changes (for instance to digital lifecycle).

  - Not necessarily referring to a governance group, but some type of governance (performing functions above) is.

  - Decides who is an active student.

What is Identity Management is a Service?

  - Increasingly about policy.

How to get buy-in from senior management to make things happen?

  - Need to make business case, show metrics. 

  - Participate in Internet2 to garner support.

Authentication vs. Authorization (how to help get the message out).

  - Struggle to switch from anyone with an account having access to 

  - Depends on quality of data form system of record (which may not be good).

  - Results in people losing access they need. 

  - Could be helped by having owners of data (e.g. Registrar) serving on governance?

  - We are moving toward "identities for life."  Can be used to frame discussion - what services should people have for life (vs. as members)?

  - Never a hard-and-fast rule for who should get access, so need to provide tools to service providers and delegation decision making to them.  No central way to answer "what are all of the services that x has"?

ACTIVITIES GOING FORWARD / NEXT STEPS

  - ITIL definition of IDM as a Service

  - Definition of IDM as a Service from this community.

If slides are used in the session, please ask presenters to convert their slides to PDF and email them to acamp-info@incommon.org

Thank you!

  • No labels