The document discusses implementing identity and access management (IAM) in higher education institutions. IAM is essential to ensure secure access to information, resources, and systems while adapting to changing requirements. TechDemocracy provides IAM solutions and services to help higher education clients manage user identities and access, integrate applications and systems, improve security and compliance, and enhance the user experience. Their solution for a large public school district involved defining a phased implementation approach using IAM products to automate user provisioning and access management across various systems and applications.
Assure Ecommerce and Retail Operations Uptime with ThousandEyes
Implementing IAM in Higher Ed
1. www.techdemocracy.com
IDENTITY
Date
Version
25 March 2022
Case Study v.6
C A S E S T U D Y
- By Ravindra Neriyanuri
Implementing Identity & Access Management in
Higher Education
Higher education accounts for 17 per cent of all reported data breaches. It
is highly essential to protect an academic institution from cybersecurity
threats. Not doing so puts at risk information systems, databases
of libraries, e-mail, grade portals, and various resources for learning
management tools in jeopardy.
ACCESS
MANAGEMENT
(IAM)
2. www.techdemocracy.com
Implementing Identity & Access
Management in Higher Education
Identity and Access Management (IAM) is essential to ensuring sufficient, precise and safe access to
information, resources and systems and can directly affect both the integrity of the institution and its
ability to adapt to today’s fluid and frequently unpredictable requirements of educational institutions.
In the Higher education be it a High School, College
or University, it is very needed for every student,
staff or employees to access information in the
campus or remotely with a seamless experience.
It becomes imperative for the Higher Educational
institutions to provide a secure and easy to use
interface experience when they access the systems,
applications and information.
With the new students joining and some old
students leaving or getting transferred, it’s very
critical to ensure onboarding or de-provisioning
of students and managing faculty or staff based
on their roles is done securely as per regulations.
Typically, any Higher Ed (University / School /
College) begins with seeking for an overall strategy
and roadmap for the evolution of an Identity
and Access Management program within the
institution. Some of the key business drivers are
enhancing user experience, managing risk and
compliance, improving automation and efficiency,
federation, replacing legacy technology, and
scalability etc.
It is recommended to go with a streamlined
approach like building foundation architecture
then transitioning the existing services and
downstream applications/systems in a new
environment to address the key limitations in the
current state while implementing a successful IAM
program. The other phase could include adding
new functionality, enhancements and automation
etc.
As part of the implementation, TechDemocracy
has adopted a seasoned approach to meet the
implementation requirements in HigherEd in each
project phase.
3. www.techdemocracy.com
Implementing Identity & Access
Management in Higher Education
• Base installation and configuration of On-Premise components in
the agreed environments
a) Identity Management / Governance Solution
b) Configure Enterprise Active Directory as Centralized User
Directory solution
• Basic Validation of Oracle Identity Cloud Services
a) Single Sign-On
b) Identity Federation Services
c) Token Services
d) Reporting Services
Base Environment Set Up / Configuration
• Consolidation of identity repository from current AD domains into
existing Enterprise AD
• Configure required Connectors, ex: for HRMS, Office 365, Google
Apps etc.
• Develop and Configure connector for Black Board
• Configuring Provisioning policies
Identity Management / Access Governance (On-Premise)
• Identify, prioritize the “CORE” IAM business processes and deep-
dive to understand gaps w.r.t to people, technology and industry
standards
• Re-design IAM processes into scalable, agile, efficient, optimized
for single digital identity solution with the selected/proposed IAM
product Suite
• Profiling and prioritization of applications/systems to be integrated
with Hybrid IAM platform to meet business needs
Due Diligence / Planning Preparation
4. www.techdemocracy.com
Higher Education
Business Challenges
Maintain users who
register each semester
and their attendance
Monitoring staff and
lecturers
Maintain institutions
teaching materials and
stationery
Use the same username and
password in a single login to
login to different portals
Log in to various portals using
Facebook, Twitter or Gmail
Have distinct access to portals
on the basis of their location
Plugging multiple device to the
system and manage remote
login to applications
Safe & Secured portals from
hackers
CHALLENGES
5. www.techdemocracy.com
TechDemocracy Solution
About the Client
Business Challenge IT Challenge
The solution approach involved defining a multi-
phased implementation approach using the
IAM product to provision and de-provision user
accounts based on systems of record. Upgrading
Identity & Access management components to the
latest version, and utilize the latest features offered
in setting up role, responsibility and attribute-based
access control to Active Directory, Oracle E-Business
Suite, SMAX Application and Data Warehouse and
external applications like Google Apps.
Results
• Improved availability SLA for the IAM services
• Reduced password related Help desk calls
significantly;
• Improved Customer Service through fast and
automated account setup for Students, Staff
• Increased internal & external Customer
satisfaction.
The Business challenge was to provide systems
administration and identity & access management
services to school employees, contractors and
students.AsthiswillhelpthemoptimizeInformation
Technology (IT) resource utilization and thereby
improve systems availability and performance
and to ensure timely and secure access to various
enterprise systems, and also enable Parents to
register and securely access their child’s education
details and manage their identities.
There were a high number of Student Registrations,
School transfers and Staff roles to be managed
along with the challenge of integration with DW,
EBS, GAPPS, AD for seamless with Oracle Identity
Management.
One of the largest
public-school district
administrators of the
United States.
6. www.techdemocracy.com
About TDC Capability
TechDemocracy is a Cyber Security Services and
Product based company established in the year
2001 and celebrating its 20th anniversary this
year. It is a trusted, global cyber risk assurance
solutions provider whose DNA is rooted in cyber
advisory, managed and implementation services.
It is an advisor and integrator at heart, striving to
create centers of excellence globally to provide
cybersecurity services, analyzing and scoring
compliance, risk, security, and governance
situational awareness across any size enterprise.
TechDemocracy (TDC) is an ISO 27001:2013 and
ISO 9001:2015 certified, technology and Innovation
Company with a global footprint. TechDemocracy
has rich experience in catering to technology needs
of different business lines, viz. Higher Education,
Healthcare, State and Local Bodies, Utilities,
Financial Service. TechDemocracy is also positioned
as a Niche Player in the August 2020 Gartner Magic
Quadrant for IT Risk Management for its product
Intellicta.
Since its inception in 2000. TechDemocracy
is specialized in enterprise software products
that stand for progress. TechDemocracy with
innovation and value creation offers integrated
portfolio of services in Cybersecurity like Identity
and Access Management, Enterprise solutions,
TechDemocracy leverages its extensive global
offshore infrastructure and network of offices
to provide holistic, multi-service delivery in key
industry verticals including Public Sector, Higher
Education, Federal, State and Local, Financial
Services, Healthcare and Utilities. We have distilled
the best practices and methodologies that we
share with our customers. Our team works with
clients to advance the available IT infrastructures,
meet security and compliance challenges and
safeguard sensitive information and improve
their ROI. TechDemocracy offers a wide range of
provisioning connectors for cloud computing and
higher education such as Google Apps, Live@edu,
Sakai, Moodle, and Blackboard.
7. www.techdemocracy.com
For more information, visit www.techdemocracy.com, or
e-mail us @ info@techdemocracy.com / Marketing@techdemocracy.com
1 Corporate Place South,
Suite # 110, Piscataway,
NJ 08854.
Call Us : +1 732 404 8350
Fax : +1 732 549 7020
Address Contact