gudrun buchholz dr. christoph wall electronic administration and services therefore iam identity and...
TRANSCRIPT
![Page 1: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/1.jpg)
Gudrun BuchholzDr. Christoph Wallelectronic Administration and Services
Therefore IAM
Identity and Access Management @
Freie Universität Berlin
![Page 2: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/2.jpg)
2International HERUG 2014, IAM @ FU Berlin
1637
![Page 3: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/3.jpg)
3International HERUG 2014, IAM @ FU Berlin
2014
![Page 4: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/4.jpg)
4International HERUG 2014, IAM @ FU Berlin
More typical in administrative environments:
I have a contract, therefore I am
![Page 5: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/5.jpg)
5International HERUG 2014, IAM @ FU Berlin
Proof of Identity
![Page 6: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/6.jpg)
6International HERUG 2014, IAM @ FU Berlin
Now after I made sure that I am …
…I need to determine who or what I am.
![Page 7: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/7.jpg)
7International HERUG 2014, IAM @ FU Berlin
Characteristics of Identity
![Page 8: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/8.jpg)
8International HERUG 2014, IAM @ FU Berlin
Theoretical Groundwork
"Every thing is what it is, and not another thing." Fifteen Sermons Preached at the Rolls Chapel (1726)
Joseph Butler (1692–1752)English Bishop and Philosopher
![Page 9: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/9.jpg)
9International HERUG 2014, IAM @ FU Berlin
More typical in administrative environments:
Characteristics of identity are determined by roles
![Page 10: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/10.jpg)
10International HERUG 2014, IAM @ FU Berlin
Why would anybody in IT
care?
![Page 11: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/11.jpg)
11International HERUG 2014, IAM @ FU Berlin
![Page 12: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/12.jpg)
12International HERUG 2014, IAM @ FU Berlin
The Confederationof independent Systems @ FU Berlin
HR
FI
SLcM
SAP Web
HIS
PublikationsDB
MyVV
ProfilDB
Black-board
FUPortal
eSA
Intranet
Helpline
Aleph
IT-V DB
SBK
VoIP
oRA
BSCW
![Page 13: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/13.jpg)
13International HERUG 2014, IAM @ FU Berlin
Independent Systems @ FUB
HR
FI
SLcM
SAP Web
HIS
PublikationsDB
MyVV
ProfilDB
Black-board
FUPortal
eSA
Intranet
Helpline
Aleph
IT-V DB
SBK
VoIP
oRA
BSCW
Lack of transparency of system access- No central documentation
of users and authorizations
Lack of IT-Security- No conclusice centrally
administered deactivation of retired staff
Lack of efficiency- User administration needed
in every individual system
![Page 14: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/14.jpg)
14International HERUG 2014, IAM @ FU Berlin
Integration as central task of IT in HER
„For a long time increase of efficiency was attained by casting processes hitherto unsupported by IT into hard- and software based systems without much change to the process in question. Today the focus lies on cross-linking and integration. Thus integrated information management has become the central task for planning and deployment of modern information technology at Universities.“
„Informationsverarbeitung an Hochschulen“Empfehlungen der Kommission für IT-Infrastruktur für 2011 – 2015
Deutsche Forschungsgemeinschaft DFG
(my translation, chw)
![Page 15: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/15.jpg)
15
FUDISFU Directory
Service
SAP Web
FI
HR
SLcM
HIS
PublikationsDB
MyVV
ProfilDB
FUPortal
SBK
Aleph
Intranet
Black-board
oRA
eSA
Helpline
IT-V DBVoIP
BSCW
1st step of Integration: Identity Management
International HERUG 2014, IAM @ FU Berlin
![Page 16: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/16.jpg)
16
Onboarding & Authorization(legacy architecture)
International HERUG 2014, IAM @ FU Berlin
CUA SLcMHIS
HR
FUDIS(FU Account)
Students
Employees
Business PartnerStudent User
User
Ext. TeachersUser
Personnel Data
FI
User
SAP Web
User
Teachers
Employees
Students
Dep
artm
ents
Authoriz.
Authoriz.
Aut
horiz
Aut
horiz
Aut
horiz
SAP Admininstration
Personnel
Data
Identity Data
AuthorizationData
![Page 17: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/17.jpg)
17
Black-board
SOS ZUL
AlephOrg. Man.
oRABIOS
CLAKS
Info-DB
oBiiLV
SLcM
HCM
PSM
CO
FI
Server and Storage
Internet ServicesFUDIS
Networks
ISISIntegriertes Steuerungs Informationssystem
CMSCAFMWikis, Blogs
Extension of SAP Footprint
SAP basiert
FUDIS / IdM
Systeme für Lehre und Forschung:
Info-DBs: - Forschungsdatenbank - Profildatenbank - Publikationsdatenbak
oBi: online Bibliothekssysteme
Aleph: Bibliotheksverwaltung
iLV: Lehr- und Raumplanung
SLcM: Prüfungsverwaltung
SOS: Studentenadministration
ZUL: Zulassungsverwaltung
Blackboard: e-learning Plattform
CMS: FU Webauftritt
Verwaltungssysteme:
CO: Controlling
HCM: Personalsystem (Abrechnung)
Org.Man.: Organisations Management (HCM plus Grafiksystem)
oRA: online Rechnungs- und Auskunftssystem
FI: Finanzbuchhaltung
PSM: Public Sector Management
BIOS: elektr. Warenkorb
CLAKS: Gefahrstoff Kataster mit Chemikalien-Bestellung
CAFM: Facility Management
Ablösung durch SAP
![Page 18: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/18.jpg)
18International HERUG 2014, IAM @ FU Berlin
Consequences of pervasive SAP Use:We never saw users in such numbers
![Page 19: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/19.jpg)
19International HERUG 2014, IAM @ FU Berlin
Increase of Student Users with SLcM Roll Out
0
5000
10000
15000
20000
25000
30000
35000
2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013
Studenten
Studenten
![Page 20: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/20.jpg)
20International HERUG 2014, IAM @ FU Berlin
Increase of staff and teachers as SAP users
0
500
1000
1500
2000
2500
3000
3500
4000
4500
5000
2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013
ext. Teachers
FU employees
2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013
FU employees 40 114 239 287 374 435 1306 1912 2391 3378 3394 3425ext. Teachers 750 750 750 800 900 1000 1150 1200Studenten 8936 13966 15848 18443 20747 23707 26568 30000
Total Users 40 114 239 287 10060 15151 17904 21155 24038 28085 31112 34625
![Page 21: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/21.jpg)
21International HERUG 2014, IAM @ FU Berlin
Challange: External Teachers not documented in HR
0
500
1000
1500
2000
2500
3000
3500
4000
4500
5000
2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013
ext. Teachers
FU employees
2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013
FU employees 40 114 239 287 374 435 1306 1912 2391 3378 3394 3425ext. Teachers 750 750 750 800 900 1000 1150 1200Studenten 8936 13966 15848 18443 20747 23707 26568 30000
Total Users 40 114 239 287 10060 15151 17904 21155 24038 28085 31112 34625
![Page 22: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/22.jpg)
22
Onboarding & Authorization(legacy architecture)
International HERUG 2014, IAM @ FU Berlin
CUA SLcMHIS
HR
FUDIS(FU Account)
Students
Employees
Business PartnerStudent User
User
Ext. TeachersUser
Personnel Data
FI
User
SAP Web
User
Teachers
Employees
Students
Dep
artm
ents
SAP Admininstration
Personnel
Data
Identity Data
AuthorizationData
Authoriz.
Authoriz.
Aut
horiz
Aut
horiz
Aut
horiz
![Page 23: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/23.jpg)
23International HERUG 2014, IAM @ FU Berlin
IT:„Something has to
be done !“
![Page 24: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/24.jpg)
24
Implementation of new Identity and Access Management
Top 1:New Onboarding Architecture(Proof of Identity)
International HERUG 2014, IAM @ FU Berlin
![Page 25: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/25.jpg)
25International HERUG 2014, IAM @ FU Berlin
Proof of Identity at Universities
Gudrun
![Page 26: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/26.jpg)
26International HERUG 2014, IAM @ FU Berlin
The of External Teachers
![Page 27: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/27.jpg)
27International HERUG 2014, IAM @ FU Berlin
The of External Teachers
Elections
Masterdata
Course Planning
Capacity Planning
![Page 28: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/28.jpg)
28International HERUG 2014, IAM @ FU Berlin
2011 – 2013 Reimplementation of Academics Dataflow
Improvement of data quality
Avoiding of duplicates
Reduction of user accounts to the needed number
![Page 29: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/29.jpg)
29
Distributed Master Data Management(legacy architecture)
International HERUG 2014, IAM @ FU Berlin
User
SLcM
Teacher Data
HCM
User
Personnel Data
User
Evento
Teacher Data
Ext. Teachers
FUDIS(FU Account)
Academic Employees
Faculties Central HR
![Page 30: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/30.jpg)
30International HERUG 2014, IAM @ FU Berlin
Gudrun
![Page 31: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/31.jpg)
31International HERUG 2014, IAM @ FU Berlin
Masterdata where?
EVENTOHCM
SLcM FUDISCRM
![Page 32: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/32.jpg)
32International HERUG 2014, IAM @ FU Berlin
Masterdata who?
Central HR Dept
Faculties
![Page 33: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/33.jpg)
33
Improvement of data quality
International HERUG 2014, IAM @ FU Berlin
FUDIS
FU Account
Ext. Teachers
HCM
Academic Employees
Central HR
FacultiesWebDynpro
![Page 34: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/34.jpg)
34International HERUG 2014, IAM @ FU Berlin
![Page 35: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/35.jpg)
35International HERUG 2014, IAM @ FU Berlin
Teaching
![Page 36: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/36.jpg)
36International HERUG 2014, IAM @ FU Berlin
Teaching
Employed Non Academics
Employed Academics External Teachers
Associate Professors
![Page 37: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/37.jpg)
37International HERUG 2014, IAM @ FU Berlin
Employed Academics
External Teachers
Associate Professors
![Page 38: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/38.jpg)
38
The Introduction of the Central Person
International HERUG 2014, IAM @ FU Berlin
Central Person # 1
HCM Person # 2 HCM Person # 3HCM Person # 1
Marcus MillerExternal Teacher
Marcus MillerEmployed Academic
Marcus MillerAssociate Professor
![Page 39: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/39.jpg)
39International HERUG 2014, IAM @ FU Berlin
Initial Master Data Migration FUDIS => HCM
FUDIS
9300 Teacher-Ids
2300 Ext. Teachers
HCM
2400 Inactive Teacher-IDs
3100 (Academic) Employees
1500 Both: Employees and Ext.Teachers
![Page 40: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/40.jpg)
40
Avoiding of Duplicates
International HERUG 2014, IAM @ FU Berlin
FUDIS
FU Account
Ext. Teachers
HCM
Academic Employees
Central HR
Faculties
Central Person
Duplicate Check
Duplicate Check
User
SLcM
Teacher Data
User
Evento
Teacher Data
![Page 41: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/41.jpg)
41International HERUG 2014, IAM @ FU Berlin
Active Teachers?
Employed Academics
Teaching Contract
Period of the contract
ExternalTeachers
Teaching contract for single
courses
SemesterExt. Teachers
HCM
List of coursesper semester
Academic Employees
Hire Fire Dates
Who?
Why?
When?
How?
![Page 42: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/42.jpg)
42
Reduction of user accounts to the needed number
International HERUG 2014, IAM @ FU Berlin
Ext. Teachers: 2300
HCM
2400 Inactive Teacher-Ids
(Academic) Employees: 3100
Both: 1500
Activity Control
3700
Ext. Teachers: 800
HCM
Academic Employees: 2400
(Teaching) Employees: 500
April 2013: 6900April 2014:
![Page 43: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/43.jpg)
43International HERUG 2014, IAM @ FU Berlin
A Matter of Perspective
I‘m going to teach soon, therefore I am
I still need to grade,therefore I am
![Page 44: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/44.jpg)
44International HERUG 2014, IAM @ FU Berlin
Masterdata where?
EVENTOHCM
SLcM FUDISCRM
Was the decision for HCM a good one?
![Page 45: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/45.jpg)
45International HERUG 2014, IAM @ FU Berlin
Activity Matrix
Interface to Group Before Course
After Course
After hiredin HCM
After firedin HCM
SLcM Employed (Academics) 3 month 7 month
Associate Professors 7 month
External Teachers 6 month 7 month 7 month
Academic Supervisors 12 month
Evento Employed (Academics) 3 month
External Teachers 6 month 7 month 7 month
IDM Employed (Academics) 7 month
Associate Professors 7 month
External Teachers 6 month 7 month 7 month
Academic Supervisors 12 month
HCM has to define and provide the acticity period of the teachers for other systems. It offers no standard functionality for this.
The function that computes the activity of a teacher has to be implemented in all the reporting, the web dynpros for teachers, the interfaces and the query tools.
![Page 46: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/46.jpg)
46International HERUG 2014, IAM @ FU Berlin
Structured Information about Teachers for IDM
Past Members
for…MonthActive Members
of FU
Future Members
for… Month
7 Employed Academics -
7Employed Non
Academics teaching -
7 Associate Professors -
7 External Teachers6
- Academic Supervisors -
![Page 47: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/47.jpg)
47
Implementation of new Identity and Access Management
Top 2:Introduction of Roles(Characteristics of Identity)
International HERUG 2014, IAM @ FU Berlin
![Page 48: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/48.jpg)
48
Authorization before …
Authorization
Authorization
Authorization
Authorization
AuthorizationAuthorization
AuthorizationAuthorization
Authorization
Authorization
Authorization
Authorization
Authorization
AuthorizationAuthorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
AuthorizationAuthorization
Authorization
International HERUG 2014, IAM @ FU Berlin
![Page 49: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/49.jpg)
49
Introduction of Roles
Authorization
Authorization
Authorization
Authorization
AuthorizationAuthorization
AuthorizationAuthorization
Authorization
Authorization
Authorization
Authorization
Authorization
AuthorizationAuthorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
AuthorizationAuthorization
Authorization
International HERUG 2014, IAM @ FU Berlin
![Page 50: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/50.jpg)
50
Introduction of Roles
Authorization
Authorization
Authorization
Authorization
AuthorizationAuthorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
AuthorizationAuthorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization
Authorization Authorization
AuthorizationAuthorization
Authorization
Group 1
Group 2
Group 3
International HERUG 2014, IAM @ FU Berlin
![Page 51: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/51.jpg)
51
Introduction of Roles
Group 1
Group 2
Group 3
Business Role 1
Business Role 2
Business Role 3
International HERUG 2014, IAM @ FU Berlin
![Page 52: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/52.jpg)
52
Role Approval Workflow
Authorization
User Applicant
IdM
Key User
ok
Application
International HERUG 2014, IAM @ FU Berlin
![Page 53: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/53.jpg)
53International HERUG 2014, IAM @ FU Berlin
Did it help ?
![Page 54: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/54.jpg)
54International HERUG 2014, IAM @ FU Berlin
Identity Management at work:
![Page 55: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/55.jpg)
Gudrun BuchholzDr. Christoph Wallelectronic Administration and Services
Strategic Goals reached with the new IAM
Information online available about who has which rights in what system since when and awarded by whom
Comprehensive offer of information
Web based role request and provisioning Mobile Information
Trans-departmental process of onboarding with single point of entry for informationSmarte Processes
Automated process of user deactivation upon end of employee status Secure data
No more fees for licenses for inactive usersSustainable use ofressources
International HERUG 2014, IAM @ FU Berlin
![Page 56: Gudrun Buchholz Dr. Christoph Wall electronic Administration and Services Therefore IAM Identity and Access Management @ Freie Universität Berlin](https://reader036.vdocuments.us/reader036/viewer/2022062417/551a8c095503466b3a8b4ce7/html5/thumbnails/56.jpg)
56International HERUG 2014, IAM @ FU Berlin
Dr. Christoph WallDirector administrative IT-Services Boltzmannstraße 1814195 BerlinGermanyTel: +49 30 838 58000Web: www.fu-berlin.de/eas
Gudrun BuchholzTeam Lead HCM-Services Boltzmannstraße 1814195 BerlinGermanyTel: +49 30 838 54764Web: www.fu-berlin.de/eas