Your  Account:

Identity Management

Identity and Access Management (IAM) are the policies, standards and technology infrastructure that assign and manage the digital identities of the members of the CSUSM community. IAM provides the ability to authenticate (verify people’s identity claims) and enable easier, secure access to services and information based on a person’s role and standing within the CSUSM.

  • Easy, seamless and efficient access
  • Efficient user provisioning, authentication, and access across all campus applications
  • Multi-factor Authentication (MFA)

Big Ideas (3-5 years)

  • Multi-factor Authentication (MFA)with Biometrics - a layered defense
  • Self service
  • Role-based Access (RBAC) and Attribute-based Access Control (ABAC) - automatic of processes
  • Identity wallet - combining technological advances - create privacy-preserving data storage, data sharing and identity management services

Campus Connection

  • Academic Excellence - 1.1 Ensure a personal student centered learning environment
  • Efficiency - user provisioning, authentication, and access management across campus applications
  • Easy, seamless and efficient access to encourage student engagement and academic success

What is IITS already doing related to identity management?

  • PeopleSoft mass create process
  • Security activation scripts
  • Password change rules strengthen with new application
  • Single-Sign On - Active Directory Federation Services (ADFS) and Shibboleth
  • Manual provisioning and deprovisioning

Who else might we need to bring into a conversation about identity management?

  • IITS - Information Security, Enterprise Applications and Analytics, Systems Integration
  • Human Resources, Enrollment Management Services,  Extended Learning, Emergency Management System, Faculty Affairs, University Police Department
  • Telephone services, directly IESC
  • CSU - Identity Access Management Collaborative

What may need to be expanded in terms of services, systems, etc. if identity management surfaces as a key area of focus from campus stakeholders?

  • Create an Identity Access Management roadmap
  • Explore open source options
  • External outreach to other CSU campuses - best practices
  • Micro-SaaS

What are our internal assets and challenges to meet identity management needs, if adopted?

  • Bring Your Own Device (BYOD) challenges
  • Single-Sign On (SSO) methodology
  • Privacy Protection vs End user convenience of SSO
  • Complexity of systems such as PeopleSoft  and Shibboleth
  • Deprovisioning security - automate process
  • Cost & Resources
  • Legacy system architectures

What are people asking for? What issues are IITS aware of?

  • Customer Relationship Management (CRM)- campus-wide
  • External Community outreach
  • CSU Common Management System - single-sign