This event is history, please check out the List of Upcoming Seminars, or send us an email

Check out our related in-house workshops:

 Learning Objectives

This seminar covers all phases of justifying, planning and deploying a comprehensive IAM solution that integrates directory services, user management, authentication, and access management. If you want to investigate the growing need for identity management, don't miss this unique one-day seminar.

Questions answered in this seminar

• What is the strategic and business justification for identity and access management (IAM) ?
• What are the business goals, how do you build a business case, and how do justify the ROI for an IAM project ?
• What are the leading tools on the market, and do you need a best-of-breed solutions or an integrated end-to-end solution ?
• How can IAM help in migrating and upgrading from one operating system to another ?
• Learn how IAM will dramatically reduce the number of password-related calls to the helpdesk
• Find out how IAM will increase enterprise portal security and effectiveness through automated user profile updates
• Many other questions will be answered, including yours if you send them to seminars@itworks.be.

Who should attend this seminar ?

• Security architects and technical managers who need to justify, design and build an identity and access management infrastructure, and others who would like to learn more about the status of IAM technology and IAM solutions.
• Everybody who wants to know the state-of-the-art in identity & access management, application-level security, single sign-on, ..., etc.
• Security managers who have to build a business case for IAM
• Security and IT auditors who need to audit security infrastructures
• IT managers who need to understand the concepts behind identity management such as single sign-on, role-based access control, provisioning, federation, ...

 Full Programme

• Today's identity and access management challenges - some use cases of what can go wrong
• The business case for identity management
• The ROI and payback time of IAM projects: justification and business benefits
• Underlying concepts: single sign-on, role-based access control (RBAC), directories and meta-directories, provisioning, federation, ...
• Strategic choices to be made

What can Identity Management do for you ? Where is your pain: is it provisioning, SSO, One Password, Security, Helpdesk relief, User comfort....?

• Administrator(s) point of view: Directory, LDAP, Meta-Directory; Central user management; Political issues
• User point of view: "Log in once"
• Security Officer's point of view: Password Management (one password vs multiple passwords); Protect against "Man in the middle attack"
• Business view: Overall Manageability and consistency of Username/id's/phone numbers...; Delete user account in one subsystem vs block user account in another; Logging;Compliance with laws and legislation

What are the Building Blocks ?

• Provisioning solution: Directory, Meta engine, Connectors, Authoritative Data Source, Scripting language
• Access Management and Single Sign-On for Web Applications
• Reverse Proxy method, strong authentication (eID), Federation, ...
• the background process
• advantages / limitations
• Single Sign-On
• Agent on the desktop
• Central Management of a Distributed Solution
• How Secure is your "wallet" ?
• Advantages / disadvantages
• Monitoring
• Establishing base lines
• Alerting
• Non-repudiation logging

• Market overview for each of the components of an identity management solution (including a discussion and positioning of the solutions from HP, IBM, Microsoft, Netegrity, Novell, Oblix, RSA, SUN, ...):
• Identity repositories (Directories and meta-directories...)
• Triple AAA services:
• Authentication infrastructures
• Authorization infrastructures
• Auditing infrastructures
• Identity lifecycle management tools (provisioning, ...)
• Web access control software
• Privacy management tools

Identity Management has many faces. In some cases it is used to refer to the mechanism of managing user identities and entitlements across various heterogeneous platforms and applications, both within and beyond the enterprise boundaries. On the other side it is seen as the solution for creating unique digital identities across all these platforms.

While most Identity Management projects start from one of these expectations, the combination of new and existing legacy applications using diverge identity systems usually result in an approach that goes for the best compromise of both models. This presentation will highlight the classical pitfalls related to the traditional identity management project approach and will provide some guidelines on how to avoid them.

• Federation initiatives (Liberty Alliance, WS-Security)
• SAML-based single sign-on
• Liberty Alliance versus WS-Security
• How federation will be used in Web and e-government applications
• Best-of-breed solutions versus integrated single-vendor solutions.

• WeB: ING's pan-European web-enabled transaction platform for wholesale customer
• WeB's value proposition for customers and ING
• WeB wholesale channel architecture
• WeB Access Management: authentication and authorisation

 Speakers

Questions about this ? Interested but you can't attend ? Send us an email !