EN-Cn
  • Identity and Access Management (IAM)
    Identity and Access Management (IAM)
    Identity and Access Management (IAM)

Identity and Access Manag冷村ement (IAM)

Module Introduction


SiCAP-Identity and Acces數錢s Management(IAM)Based on她志 the design concept that an en去土terprise only needs to maintain a set 了好of organizational 跳少structure, an enterp拍黑rise only uses a set o子數f user identity management system, 家妹and an enterprise only use站少s a set of user authentic空鄉ation system, it builds a unified i村嗎dentity management s麗火ystem for users through functio街看nal modules such a他器s identity governance, auth為聽ority governance, trusted auth快器entication, auditing and wind control,拍爸 realizes the visual control of user科影's whole lifecycle林姐, and meets the needs of unified iden唱西tity management, unified author現分ity management, 有見unified authenticati刀很on management, security auditing裡高 and risk control雪化.


Feature Description


  • Unified Account Managemen我兒t
    Construct a unified user management sy女訊stem with one set of兵討 organization, one set of從作 personnel and 海畫one set of master accoun呢員t (ID) Support account collec拍厭tion management and two-way sy熱話nchronization of each applicatio微低n system, simplify 和女the management complexity去為 of users and accoun匠銀ts, and reduce the security risk 化光of system management; Builds i都業ts digital identity arou歌北nd the user, integrates the acco姐房unt information o湖機f each system, and realizes th外都e unified management 劇熱of the whole life cycle of the use舞些r's identity; For資習mulate identity management specifica子木tions, which can be based on glob風遠al, organizational and accoun就關t, and flexibly set dif報來ferent account 我開policies and password policies; 吧可Account system c友子o-construction and interoperabilit歌要y, supporting HR, OA, ESB兵中, LDAP and other data access; F暗能lexible expansion to meet ind師房ividual needs, supporting customizati門購on of organization attribu筆動tes and personnel attributes;
  • Unified Application Managem遠村ent
    Application security a我文ccess, secret key, API m歌中anagement; Applicati離西on integration of multiple protocols:相雜 oauth2, CAS, OpenID事樹, SAML, JWT, RestFul; Flexible con這的figuration of application inte體還rfaces, data calls; Applicati工雨on data collection, distribution.懂為
  • Unified Authori國說ty Management
    The platform's own rights, based o都拿n role + organization hierarchy visi學化bility, to achieve fine-grained從不 control of menu-lev愛一el and data-level rights; Applicatio畫頻n rights management, support影舊 for dynamic au家看thorization of application看慢s, according to the organization你訊, position, user group, user au船公thorization applicat飛答ions; Support role au外務thority customization and dynamic木雪 allocation; Unif日草ied centralized authorization a雜國nd control of all resource弟上 accounts, multi-dimen算也sional matching of maste好靜r and slave accounts, and fine-grained 腦習allocation; Permission compliance chec學黃king, effective verification暗爸 of permission comp報新liance;
  • Unified Authentication Manage頻相ment
    Support password authenticatio能道n, Radius authenticat匠購ion, Ldap authentication, Ad購鄉 domain authentication, SMS a公生uthentication, dynamic token a劇懂uthentication, c玩說ell phone token authentication, ce作關rtificate authenticatio你裡n and other authenticatio兵男n methods; Suppo冷我rt two-factor authent唱雜ication and system-wide hyb慢答rid authentication, and different lo生睡gin authentication modes can be 計笑set according to different security le有購vels; Support for external au生輛thentication syste用草ms; Provide SSO oper金笑ation and use.
  • Security Audit Log
    User operation 司東logs, account login logs, authen通頻tication logs, data不說 synchronization logs, etc. are man鐵影aged in a unified唱線 manner and audited in a comprehensiv愛在e manner, so as to disc裡什over security-related p服歌roblems in a timely manner an吃白d realize user behavior au跳愛diting, authentication道女 auditing and API aud大媽iting.
  • Comprehensive Risk Control
    Provides ex-ante preventi我做on with flexible configuration of syste個唱m-level and application問農-level risk policie刀照s; Support intellige裡店nt identification of abnor刀近mal access behavior based o站又n users' access beh女紅avior habits, from time, space,說美 behavior, equipment and匠短 other dimensio間少ns; Provide mid-control靜雜, triggering risk control pol身裡icies to implement different risk co朋書ntrol measures, including:風麗 blocking, secondary湖紅 authentication白市, release, and alerts資頻; Provide whitelisting mech遠哥anism, system-level a水年nd application-level whit車老elist can be set; Support tru一西sted browser management, using 錯船non-trusted browser login, trigger但門ing the wind con街開trol rules; Support session mana電姐gement, support ab頻來normal online session logout operat生技ion.
  • Unified Portal Self-Service
    Identity management process-ori車對ented, the establishment of 跳體self-service cen友頻ters to achieve self-servic好懂e update of user information, a術輛ccount applications and other proce哥我ss-oriented manag對些ement; Docking with ext飛購ernal processes to p一影rovide a unified authentication porta店可l; Supporting the visualizat錯一ion of application acce了黑ss rights; Supp少南orting account self-registrati你不on and password rese銀作t; Supporting 白放self-service applications for busines高自s processes such a藍近s on-boarding, off-boarding, 土議permission appli水厭cations, posting tr雪我ansfers and job transfers; Support吃對 application visualization displa算海y, real-time grasp of processing pr很人ogress; Support detailed approva呢生l history, process n要火otification.
Module Characterizat煙體ion

Unified Manageme來朋nt: one organization, 男光one identity managemen來自t system, one se數請t of authentication ma花商nagement system.

Flexible Authorizat跳見ion: single-user這長 authorization and dynamic aut師銀horization based on o時議rganization, position and討影 user group.

Multi-authentication: Flexible settin煙信gs for multiple auth南們entication methods a綠朋nd support for SSO s花事ingle sign-on.

Security Complia長民nce: risk management, personal in明樂formation protection, encrypted data 南西transmission and storage.

High Availabili愛雜ty: total control c線森luster deployment, 學化distributed deployment of functional m樹媽odules to meet hig嗎雪h-performance requirements.

Easy to Expand: microservice ar照音chitecture, flexible on-demand對是 dynamic expansion.

Typical Case


● One of the thr鄉懂ee largest operator grou船化ps in China


With the development of inf街鄉ormationization, th物如e Group has more and mo子也re business applicati著做ons, and the application 員民rights and daily management are inconv北老enient and easy to lead to security城東 risks; at the same time快用, due to the large number of em海業ployees, it leads 坐綠to high identity management and ope舞做ration costs; employees need to u房得se different accounts and passwords to時船 access the applicatio數紙ns in daily life, which seriously affec事個ts the experience of us房都ing the applications and the鐵的 efficiency of business collaborat音購ion; the scattered mana要知gement of the app們呢lications and the fra笑自gmentation of the information農飛 lead to the in計玩convenience of compliance audi白空ting. In response to the above木快 needs, Suninfo Information Technol少問ogy Co., Ltd provides u算船sers with InforCube Se裡花curity intelligent CA Platform(鐘用SiCAP)Identity and A森間ccess Management(IAM)Realized for u讀都sers: Centralized resourc制一e management: u身刀nified application system management an書業d centralized management of m吃他ultiple application a影開ccess methods. Cen妹光tralized identity management: buil光鄉d a unified user management 兵看system, centralized ac船請count definition, centralized ma購聽intenance and unified authent歌業ication. Unified authorization ma鄉年nagement: build a unified 個坐authority management mo市兵del, highly adaptable to each appl化舊ication system, and suppo山錯rt single sign-on. Risk Co照低ntrol: Flexible setting of risk contr志在ol policies, intelligent ident大站ification of abnormal acces河朋s behavior, and improvemen玩理t of security risk control capabilit白要ies. Audit Managem民答ent: Comprehensive 會喝account security and user behavio票日r audit to help enter國問prises quickly meet compliance audit re道嗎quirements. Process manage線畫ment: standardized proces機喝s management, re音討alizing self-service app場紙lication and automated proce的遠ssing of affairs, simpli船黑fying work and improving ef舞得ficiency.


● A famous manufacturer師議 enterprise


With the rapid development of間森 industrialization放嗎 and economic development, China'答不;s manufacturing店朋 industry has achieved如又 rapid growth, from &quo空購t;Made in China" to "Ch會小ina Smart Manufacturing"司讀, and then to "Big Country Sma門男rt Manufacturing", the ent金木erprise information system and the nu書通mber of internal users conti要山nue to increase, the identity man煙理agement and access contro小近l of enterprises in the manufacturing中慢 industry is facing great c器遠hallenges, identit木森y management is not unified,科器 decentralized rights management, comp中事lex login authentication and說體 increased secur校微ity risks are more and mor行們e prominent, and ne還問ed to be solved urgently. Sunin匠女fo Information Tech樹那nology Co., Ltd.We conduct o近通n-site environmental i書月nspection on the status q民要uo of the enterpr水紅ise, and fully communicate with the 樂影customer on the學短 status quo and pain 時做point issues, and finall農店y based on the 司技self-developed products of SUNINFO 錢短Self-developed Products InforCube Secu事通rity intelligent CA Platform(SiCAP)of 山上Identity and Acc我北ess Management(IAM)C近機ombined with the 事讀customer's environment and nee睡雪ds for effective a間男daptation, it quickly helps th窗北e customer build a unified 學些digital user management p體鐘latform, improves and enh理在ances the digital auth煙北entication of the business大校 system, realizes fine-grained pr不窗ivilege control of the business appl照湖ication system as well外又 as real-time m下暗onitoring and risk protecti會還on of the user account,數錢 provides comprehensiv朋習e and standardized u街唱ser authentication management docking 分站specifications, and realizes t風小he comprehensive implementation of a是去utonomous services and automation drive人化.


×
Privacy
×

此處放标題

内容暫無















FREE TELL:400-880-5062
電話:86-21-51905999
傳真:86-21-51905959
郵編:201203
地址:上海市浦東新區張江高科技園區郭守敬路498号20号錯舊樓
I agree