Identity and Access Management
E697178
Identity and Access Management (IAM) is a security framework and set of tools that control and manage users’ identities and their access permissions to resources within an organization’s systems and services.
Statements (57)
| Predicate | Object |
|---|---|
| instanceOf |
IT management domain
ⓘ
access control discipline ⓘ security framework ⓘ |
| abbreviation | IAM ⓘ |
| aimsTo |
ensure that the right individuals have the right access to the right resources at the right time
ⓘ
improve operational efficiency in user lifecycle management ⓘ reduce security risk from unauthorized access ⓘ support regulatory compliance ⓘ |
| appliesTo |
contractors
ⓘ
customers ⓘ employees ⓘ partners ⓘ |
| controlsAccessTo |
APIs
ⓘ
applications ⓘ cloud services ⓘ data and files ⓘ databases ⓘ network resources ⓘ |
| focusesOn |
authentication of users
ⓘ
authorization of users ⓘ control of access permissions ⓘ governance of identities ⓘ management of digital identities ⓘ |
| implementedBy |
cloud-based IAM services
ⓘ
hybrid IAM architectures ⓘ on-premises IAM systems ⓘ |
| includesProcess |
access approval workflows
ⓘ
access certification ⓘ access request management ⓘ audit and reporting ⓘ credential management ⓘ entitlement management ⓘ identity lifecycle management ⓘ multi-factor authentication ⓘ privileged access management ⓘ role management ⓘ single sign-on ⓘ user deprovisioning ⓘ user provisioning ⓘ |
| isComponentOf |
enterprise security architecture
ⓘ
zero trust security models ⓘ |
| relatedTo |
access control
ⓘ
directory services ⓘ federated identity management ⓘ identity governance and administration ⓘ privileged access management ⓘ |
| supports |
auditability of access
ⓘ
regulatory compliance requirements ⓘ |
| usesConcept |
entitlements
ⓘ
groups ⓘ identity federation ⓘ least privilege ⓘ permissions ⓘ policies ⓘ roles ⓘ separation of duties ⓘ single sign-on tokens ⓘ |
Referenced by (2)
Full triples — surface form annotated when it differs from this entity's canonical label.