...
| TIER Functional Service Model | Subservice | Required Capabilities |
| Repository Components (limited to Person for now) | Registry | New SOR Person, Inbound to Repository |
| Group | ||
| ODS/MDM | ||
| Rule | ||
| Account & Credential Management Service | Create Credential | |
| Expire Credential | ||
| Change Credential | ||
| Account Linking Service | ||
| Registration and Enrollment Service from SOR | Search/Match Entity | Search Match Person (Stub) |
| Resolve Entity | ||
| Split Entity | ||
| Merge Entity | ||
| Group Management Service | Create Group | Create Group |
| Add Member | Add Member | |
| Remove Member | Remove Member | |
| Is Member Of | Is Member Of | |
| Show me Groups for person | Show Me Groups for Person | |
| Show me all members of Group | Show Me All Members of Group | |
| Privilege Management Service | Create Privilege | Create Privilege |
Add Member | Add Member | |
| Remove Member | Remove Member | |
Show me Privileges for Person | Show me Privileges for Person | |
| Show me all member with Privilege | Show me all member with Privilege | |
| Provisioning /De-Provisioning Consumers Service | Person Entity | |
| Guest Entity | ||
| Group member | ||
| Privilege | ||
| Provisioning Connectors | LDAP | Put LDAP Person |
| ORACLE | ||
| Kerberos | Put Kerberos Principal | |
| Active Directory | ||
| Identity Proofing Service | Person Entity | |
| Rules Engine Service | Filtering | |
| Routing | ||
| Integration | ||
| Provisioning/De-Provisioing | ||
| LifeCycle | ||
| Audit - Monitoring Operations Service | Transaction History (Human Readable) | |
| Point In Time Logs | ||
| Manual History Records (comments) | ||
| Operational Monitoring | ||
| Usage Monitoring | ||
| Administrative Configuration Service | User Interface (UI) | |
| Institution Terminology (Translations) | ||
| Reporting / Information Analytics Service | Notifications | |
| Authn and Authz Analytics | ||
| Authn and Authz Audit / Compliance | ||
| Authentication (Authn) | ||
| Authorization (Authz) |
...