La garantie d'une collaboration sécurisée entre les entreprises
IBM Tivoli Federated Identity Manager fournit un modèle simple de gestion des identités et d'accès aux ressources.
Il applique une gestion à l'échelon de plusieurs entreprises ou domaines de sécurité afin de fournir aux identités un accès à l'information et aux services, sans répliquer l'administration des identités et de la sécurité dans toutes les entreprises ou domaines concernés.
- Fournit une gestion de la sécurité intégrée régie par des règles pour les services Web fédérés, dans les entreprises déployant une architecture orientée services (SOA) et des services Web.
- Simplifie les tâches d'administration et permet aux entreprises d'étendre la gestion des identités et des accès à des utilisateurs et des services tiers, permettant ainsi aux clients de contrôler les accès aux applications en fonction du rôle de l'utilisateur au sein de l'entreprise.
- Etend le portefeuille IBM de gestion de services informatiques, qui permet aux entreprises de simplifier la technologie grâce à l'automatisation et l'intégration de processus.
- Facilite l'intégration de la sécurité entre les nouvelles applications distribuées et les applications de mainframe existantes telles que CICS.
- Facilite les contrôles d'audit portant sur les données et les transactions existantes servies via une architecture SOA et des services Web, et permet un contrôle basé sur les rôles pour les nouveaux services Web.
- Utilise l'excellente plateforme System z pour la distribution des applications, avec de nouvelles fonctions de gestion des identités, de services Web et d'audit.
- Intègre les silos métier, en vue de faciliter les fusions et les acquisitions et de répondre aux critères requis en matière de conformité et de gouvernance, et garantit la réussite des projets SOA.
- Systèmes d'exploitation pris en charge : AIX, HP Unix, Linux, Windows, z/OS.
Nouveautés du logiciel Tivoli Federated Identity Manager V6.2
IBM Tivoli Federated Identity Manager V6.2 :
- Permet une gestion des identités centrée sur les utilisateurs, à l'aide d'un profil de carte d'information et d'un OpenID tant pour le souscripteur que pour le fournisseur d'identité.
- Met en place des déploiements de fédération modulaire et une interopérabilité en s'intégrant à une solution de gestion des accès et à des serveurs d'applications.
- Rationalise la gestion des identités SOA (architecture orientée services) via un service connectable de gestion de la sécurisation basé sur WS-Trust 1.3, qui permet le déploiement d'un bus de service d'entreprise (ESB) détectant les identités et l'intégration CICS avec RACF PassTicket.
-
Etend l'audit et la génération de rapports à des fins de conformité :
- Comprend l'outil Business Intelligence Reporting Tool (BIRT) 2.1.2, qui permet de créer ou de personnaliser les rapports fournis et de générer des rapports via la console Tivoli Federated Identity Manager ou la ligne de commande.
- Intégration à IBM Tivoli Compliance Insight Manager permettant une génération de rapports de conformité centralisée.
IBM Tivoli Federated Identity Manager Business Gateway V6.2 prend maintenant en charge SAML 2.0.
IBM Tivoli Federated Identity Manager V6.2 for z/OS prend maintenant en charge la connexion unique fédérée.
En savoir plus
Acheter Tivoli Federated Identity Manager
La 1ère année d'IBM Software Subscription and Support est inclus dans le prix d'achat.
Téléchargement en ligne du logiciel après achat - pas de frais de transport.
| Features | Advantages | Benefits |
|---|---|---|
| Rather than having to enroll third-party users into a company's internal identity systems, federated identity management enables IT service providers to offload the cost of user administration to their business partner companies | Since the business partner company acts like an identity provider, the service provider does not have to take on the burden of user administration costs such as user enrollment, account management, password management, password reset, help desk, or customer care costs | Helps to reduce administration and provisioning costs: Managing identities for third-party users can be a manual, cumbersome, and costly proposition that depletes critical IT resources |
| FIM facilitates "straight through processing" techniques because the identity provider does not have to replicate or stage business processes on behalf of a service provider | By employing Tivoli Access Manager for e-business (included with FIM), FIM is able to provide integrated session management, significantly facilitating inter-company transactions. With a federated identity model, identity providers have an opportunity to streamline inter-company transactions, thereby reducing costs, and simplifying integration | Simplified Integration: Integration is simplified because there is a common way to share identities between companies and manage user sessions |
Business benefits
Helping businesses collaborate securely
IBM Tivoli® Federated Identity Management (FIM) provides a simple, loosely-coupled model for managing identity and access to resources that span companies or security domains. Rather than replicate identity and security administration at both companies, Tivoli Federated Identity Manager provides a simple model for managing identities and providing them with access to information and services in a trusted fashion. For companies deploying Service Oriented Architecture (SOA) and Web Services, FIM provides policy-based integrated security management for federated Web services. The foundation of FIM is trust, integrity, and privacy of data.
On this foundation, organizations can share identity and policy data about users and services. The sharing of trusted identities and policies is the key to delivering a richer experience for users navigating between federation sites. Trust enables companies to loosely couple their disparate identity management systems.
A federated model simplifies administration and enables companies to extend identity and access management to third-party users and third-party services.
New for Version 6.1, Tivoli Federated Identity Manager now offers support for z/OS®.
At-a-glance
Now with support for z/OS, Tivoli Federated Identity Manager will help ensure secure transactions across mainframe and distributed environments using SOA and Web services technology. FIM provides added security protection, identity management capabilities and built-in compliance tools.
FIM enables customers to control access to applications based on the user's role in the organization (e.g., IT manager or HR manager). The software extends IBM's IT service management portfolio, which enables companies to reduce technology complexity through automation and process integration.
Tivoli Federated Identity Manager offers significant help in:
Integrating security between new distributed applications and legacy mainframe applications (e.g. CICS®)
Improving audit controls for legacy data and transactions served using SOA and Web Services
Delivering role-based access control for new Web Services
Leveraging System z® as a first class platform for Application Delivery - via new capabilities in identity management, Web Services and Audit
Integrating business silos, facilitating mergers and acquisitions, and addressing compliance and governance, to help ensure the success of SOA projects
Benefits
Companies that choose to collaborate in identity-based business processes may benefit from Tivoli Federated Identity Manager's ability to help:
Improve user experience and reduce user administration costs by using Federated Single Sign On with customer, partner, agent and/or provider organizations.
Minimize application impact, through drop-in federation capability
Allow collaboration with a wide variety of partner organizations, through concurrent support for all leading Federated Single Sign-On protocols
Integrate audit data collection and reporting.
Manage identity flow across services and deliver policy-based integrated security management
Align with open standards and specifications including Liberty, SAML, WS-Federation, WS-Security and WS-Trust.
Simplify integration between companies and their partners' Web sites, including simplified session management
Improve business compliance by helping to reduce security exposure
Expand business reach of service providers creating revenue generating opportunities
Simplify administration of security in cross-enterprise business processes by delivering "security as services"
Deliver policy based integrated security management for SOA Web Services
For the business executive:
Best-of-breed integrated solution from a proven vendor
The proven experience of IBM Global Services security and privacy practice for Tivoli Federated Identity Manager and Tivoli identity management solutions
Low total cost of ownership
IT manageability
For the IT executive:
Lower user administration and provisioning costs related to identity management
Simplified integration between companies and their partners' Web sites
Improved business compliance through reduced security exposure
Improved end-user experience through Federated Single-Sign-on and Single Sign-off
Expanded business reach of service providers creating revenue-generating opportunities
Simplified administration of security in cross-enterprise business processes by delivering "security as services"
Part of a complete range of solutions for identity management, ranging from user lifecycle management through authentication, authorization and privacy, to the identity infrastructure itself in the form of directory and metadirectory
Unique differentiators
Implements key standards and specifications for federated identity management: SAML, Liberty, WS-Federation, and WS-Trust
Delivered and supported by IBM Tivoli, which is committed to enterprise security, offering a full identity management portfolio, and continuing to strongly influence and drive Federated Identity Management and other security standards
"Drop-in" federation with minimal impact on applications - providing quicker time to value and greatly reduced ongoing maintenance costs
Offers attractive per-user tiered pricing model with unlimited user license model for securing e-business
Is architected for high availability and scalability and is in use by customers to secure federated users numbering in the millions
IBM Tivoli Federated Identity Manager Roles
In a federated identity management scenario, organizations assume the role of an identity provider or a service provider. These roles are not mutually exclusive. Many large organizations will assume the role of both identity provider and service provider.
An identity provider; is an organization that directly manages end users. An identity provider is the authoritative source for issuing and validating user identities and network credentials for a set of users; an identity provider "owns the user relationship". For example, many companies act as identity providers for employees, customers, and contractors. Identity providers "vouch" for the user identity and their entitlements in a federated interaction with service providers. So, the "identity provider" role can be thought of as an authentication authority.
A service provider provides "services" for end users. They typically do not have a vested business interest in managing the user. Service providers act as a "relying party" to validate credentials issued by a trusted identity partner, on the basis of which they provide services to that trusted identity.
In a service-oriented architecture (SOA) environment the following additional roles apply:
A Web services requester is a service client that needs to access a service provider. A Web service requester may be a Microsoft .NET application or a Java or WebSphere application.
A Web services provider is a service provider that provides a "service" or a component. A Web service provider could be a Microsoft.NET Application or a Java or WebSphere application. Web service providers need to identify, authenticated by service clients.
Within a SOA environment, there needs to an infrastructure service that simplifies the management of security polices for these various service clients and service providers.
Supported platforms
IBM Tivoli Federated Identity Manager V6.0 supports the following:
Operating systems/platforms supported:
IBM AIX® 5.2, 5.3, 6.1
Sun Solaris 9, 10 (SPARC)
Microsoft® Windows® 2003, 2008, and 2008 R2 Standard Server and Enterprise Server
Red Hat Linux® Advanced Server 3.0 and 4.0 for IBM System x®
Red Hat Linux Advanced Server and Enterprise Server 5.0 for System x
Red Hat Linux Advanced Server 4.0 and 5.0 for IBM System p® and IBM System z®
SUSE Linux Enterprise Server 9 , 10, and 11 for System p, System x and System z
HP-UX 11i V2 and V3 on Integrity
Tivoli Federated Identity Manager at a glance:
Supported platforms:
IBM AIX® 5.2, 5.3, 6.1
Sun Solaris 9, 10 (SPARC)
Microsoft® Windows® 2003, 2008, and 2008 R2 Standard Server and Enterprise Server
Red Hat Linux® Advanced Server 3.0 and 4.0 for IBM System x®
Red Hat Linux Advanced Server and Enterprise Server 5.0 for System x
Red Hat Linux Advanced Server 4.0 and 5.0 for IBM System p® and IBM System z®
SUSE Linux Enterprise Server 9 , 10, and 11 for System p, System x and System z
HP-UX 11i V2 and V3 on Integrity
Web Server plug-in component supports the following:
Apache Web Server 2.0 and 2.2
IBM HTTP Server 6.1
Microsoft Windows Internet Information Server 6.0
-
Gestion des identités et des accès
- IBM Security Access Manager for Enterprise Single Sign-On
- IBM Security zSecure Admin
- IBM Security zSecure Suite
- IBM Security zSecure Visual
- Tivoli Access Manager for e-business
- Tivoli Federated Identity Manager Business Gateway
- Tivoli Federated Identity Manager for z/OS
- Tivoli Federated Identity Manager
- Tivoli Identity and Access Assurance
- Tivoli Identity and Access Manager
- Tivoli Identity Manager
Des moyens d'achats faciles ou en savoir plus.
Besoin d'aide ?
Des moyens d'achats faciles ou en savoir plus.
- Demandez un devis
- Envoyez un e-mail à IBM
- Ou appelez-nous au (coût d'un appel local) 0810 016 810
Code prioritaire : 109HJ10W