Home Identity & Access Management IAM infrastructure components
IAM infrastructure components

Identity and Access Management contains a functional structure consisting of connected respectively overlapping modules for the use, administration and termination of digital identities and their role-rights-connections. Thus it puts an exactly defined framework for approval processes into effect and at the same time monitors authorization rights at the moment of access on the basis of PEPs – Policy Enforcement Points.


Meta Directories / Virtual Directories keep data up to date in a network of connected directories and databases and allow central administration of the spread data (Single Point of Administration). 

Provisioning provides all access rights and resources that have been allocated to an user for the required applications, processes and services. Access rights connection can be linked with internal role profiles which can be allocated to the user according to task, function and transaction.

Single Sign-on puts an integrative, safe and at the same time convenient authentication into effect. Accesses to applications and resources happen via a central authentication. 

Access-Management is responsible for the company-wide authentication of resources, verifiying access rights at the moment of resource access.

Identity Control ensures monitoring and logging of user activities. 

Delegation allows the allocation of rights to certain administrators or user groups.

User Self Service enabling users to request required resources on their own ( e.g. automated password reset, self-registration for users).