Up there with authentication and authorization, account provisioning is one of the big three components in any identity management  scheme. In our Clear Choice test of Thor Technologies' latest version of Xellerate Identity Manager (8.01), we found that the platform provides flexible account provisioning across a multitude of products and technologies, supporting even the most complex of workflows.

At its most basic level, provisioning software helps automate the creation of user accounts. The processes and workflows a company uses to create, assign, approve, and audit user accounts all can be managed through this type of software.

Workflows can be configured to automatically create Active Directory, PeopleSoft and Lightweight Directory Access Protocol (LDAP) accounts for new employees from one administrator screen once some basic information about the new user is entered. This greatly improves efficiency by drastically shortening the amount of time it takes to create new accounts or modify current user groups. The provisioning process also can include approvals, such as requiring manager approval before the new user accounts are created, making a central provisioning server key for audit compliance.

Xellerate's architecture comprises the Xellerate Server, an administrative console and a database. The Xellerate Server is the central component of the product, providing the intelligence to implement the configured processes and workflows. It enables the integration with external resources such as LDAP, Web services and custom applications . The administration console includes a Java console application, a Web front-end accessible through a browser, or a custom application built on the API. The database, usually Oracle, but SQL Server also is supported, contains all the processes.

Xellerate is very flexible, supporting simple and complex account maintenance workflows. This flexibility lets organizations implement provisioning around current processes.

Integration support is provided through resource adapters - pieces of code that run inside the server - for a number of enterprise products, including SAP, PeopleSoft and Active Directory. The resource adapters let the Xellerate Server communicate and control how applications create accounts or modify attributes of current accounts. These resource adapters could just be directly writing user information to an LDAP database or making a specific user account function call through an API to make the change. Custom resource adapters can be developed for nearly any application using Thor's developer kit.

Whitepapers

• The Trend from UNIX to Linux in SAP(r) Data Centers
• Getting in Compliance With Government Data Regulations By Leveraging Online Security Technology
• How to Offer the Strongest SSL Encryption
• Maximizing Site Visitor Trust Using Extended Validation SSL
• Seven Steps to Reducing your Security Risk
• The Latest Advancements in SSL Technology

View more SECURITY whitepapers

Webcasts

• The Secure Web Gateway. Mission Critical For Business - Webcast
• Mobile Data Security
• Best Practices for Deploying WAN Optimization for Disaster Recovery
• Solutions to the Toughest IT Challenges in Remote Offices
• Lowering the Cost of Email Archives
• High Availability for SQL Server 2005 Using Array-Based Replication and Host-Based Mirroring Technologies

View more SECURITY webcasts

Special Reports

• The Evolution of Network Security
• Taking Virtualization Up a Notch
• The self-managed network

View more SECURITY special reports