Identity management systems allow larger organizations management and control
over resources, used by identites. Primarily, these systems maintain and
enforce security and other organizational policies. Secondary task is to provide
a framework for automation of repetitive tasks and self service processes,
which allows a reduction of workload on helpdesk services and yet provides
traceability for individual request.
We’ll go through some of most important supporting security protocols,
which ensure identity authentication and data protection, their principles, security
assessment and most common vectors of attacks. In our work, we’ll
present structure of two identity management systems, OpenIDM and Microsoft
Identity Manager 2016, their advantages and disadvantages when it comes
to connecting with backend systems within organization, installation and implementation
of the system on problem domain, introduction and maintenance
of the system for identity management.
Additionally, we’ll evaluate integration with both OpenLDAP directory and
PostgreSQL database. Both systems are developed in accordance with open
source philosophy therefore they’re interesting for implementation in order to
reduce costs of using licensed software. PostgreSQL database will be used as
an identity data source. User accounts will be created in OpenLDAP based
on the data from PostgreSQL.