HP Select Identity software enables centralized management of users' identities and access rights over their complete life cycle, from initial registration through approval, provisioning, ongoing maintenance, termination and auditing. Eliminating the burden of manual provisioning and account maintenance, Select Identity helps companies centralize control of security policy while empowering business users with identity management capabilities.

Features

Provisioning - Automate the creation, maintenance and termination of user accounts and entitlements.

Workflow - Design and automate identity-related business processes such as complex approval and provisioning processes using a powerful design GUI.

Self-service - Avoid help desk calls and empower end users with the ability to make online requests for access to company services, and to self-manage profile information and passwords.

Password management - Define and enforce password policy, automate password resets and synchronize passwords on disparate information systems.

Audit and reporting - Easily determine who has access to what resources in the enterprise.

Extensible connector architecture - Ensure provisioning connectivity to your present and future IT environment.

Automated discovery - Automate the discovery and import of existing users, profile information and access rights.

Delegated administration - Select Identity allows unlimited levels of delegated administration via streamlined HTML interfaces.

Variable entitlements - Handle exceptions to role-based entitlements assignment without the burden of more roles or rules.

Industry standards support - Ensure interoperability with systems and technologies throughout the enterprise. Select Identity is a 100-percent J2EE application.

Keeping pace with change

In business, the only constant is change. Re-orgs, replacing outdated IT systems, introducing new products and services to market, taking on new customers and partners, ensuring compliance with evolving government regulations - these change events are necessary elements of doing business. But too often, change results in complications. In many cases, the administration of enterprise resources is handled by a number of different departments or lines of business—all using independent processes - making the task of getting access to required resources difficult and time-consuming. New employees can wait weeks before they are provisioned with the necessary accounts and access rights to do their jobs, resulting in lost productivity and revenue opportunity. And provisioning will need to be revisited periodically as employees progress in their careers.

With ever-increasing accounts, users forget passwords to infrequently used systems and create the top help desk call driver for most companies—password reset. And, as employees leave the company, "orphan" accounts are often left on key business systems, creating a vulnerable entry point for unauthorized access. At the same time, businesses are under competitive pressure to extend information access to external users, including customers, partners and suppliers. IT departments, consumed by the demands of internal users and organizations, are struggling to supply access for external parties. This situation is made even more complex as government regulations around the world are increasing to protect and account for access to critical information, placing a legal responsibility on companies to protect and attest to the integrity, privacy and security of their business data and information systems.

User provisioning with HP Select Identity

HP Select Identity helps solve the problems associated with user access in an ever-changing business environment. Select Identity delivers centralized, scalable user management with fast time to value and ease of use.

Service-oriented identity management

HP Select Identity uses an innovative servicebased model that enables the management of identity from a business service level, rather than at the IT infrastructure level. This service-based approach recognizes that multiple applications and systems are often used in coordination as enabling components of a higher level business function. For example, the business function of customer service may require the use of multiple IT resources—a CRM system, a help desk call ticketing system, a knowledge base, etc. Select Identity provides a model that aligns with these higher level business services. This service-oriented alignment provides faster deployment, greater operational efficiency and improved adaptability to change.

N-tier delegated authority

HP Select Identity provides unmatched flexibility in delegating administrative rights. Like other provisioning systems, administration can be delegated to any user. However, Select Identity offers unprecedented control over both the operations that are delegated as well as the objects—such as users, resources, services and workflows— on which the operations can occur. This level of control, combined with Select Identity’s web-based administration client, enables secure and flexible delegation to external organizations such as partners and customers. In addition, Select Identity provides easily configurable, multi-tier delegation, enabling delegates to further extend a subset of their privileges to others as needed.

Variable entitlements

Another innovation of HP Select Identity is the concept of variable entitlements. In traditional solutions, users are granted entitlements using a role-based scheme. The role is associated with a number of fixed entitlements that are granted to each user assigned to the role. But in practice, many users will not be an exact fit. In highly complex and dynamic business environments, these exception cases are in fact quite common. Traditionally these exceptions are handled by either creating additional roles or by employing programmatic rules to augment the fixed roles. Unfortunately, both of these approaches can require considerable expense in ongoing role/rule maintenance. Select Identity handles exceptions to role-based assignment of entitlements without requiring additional roles or rules, eliminating their associated complexity and expense. Select Identity’s variable entitlements feature enables exceptions to be handled within the process of requesting or approving user access to resources. Variable entitlements allow for infinite varieties of entitlement combinations, without the administrative burden of role proliferation or complex rule sets.

Support for industry standards

HP Select Identity embraces interoperability with broad support for industry standards, including SPML, XPDL, J2EE, JCA, XML, Java™, SSL and others.

• Select Identity's fully J2EE-compliant web services implementation enables support for multi-platform, multi-vendor environments and provides proven, enterprise-class scalability and performance with built-in clustering, fail-over, connection pooling and transaction processing support.
• Select Identity uses the J2EE connector architecture (JCA) to connect to enterprise resources and provides a wide range of connectors for provisioning databases, directory servers, operating systems and application data stores. Select Identity also provides unmatched options for creating new connectors and supports both agent-based and agent-less connectors.

Ease of deployment and maintenance

HP Select Identity includes a single, thin client (HTML) user interface, making it easy to deploy and maintain, especially in the extended enterprise. The thin client design enables ubiquitous access from anywhere on the Internet or over dial-up, within firewall constraints. Additionally, Select Identity's service-centric model, support for variable entitlements and automatic forms generation all ease deployment and maintenance.

Benefits

HP Select Identity provides a new, powerful approach to identity management. Select Identity:

• Enhances revenue by facilitating external user access to applications and services
• Decreases costs by reducing user administration effort and resource utilization
• Increases productivity by getting users access to information resources more quickly
• Enables regulatory compliance by providing a secure, systematic and auditable system for granting user accounts and access rights
• Improves security by providing the ability to control and audit user accounts and entitlements
• Enables rapid response to changes in organizational structure or IT resources
• Deploys quickly using its service-based organizational model, which is easy to configure and closely aligns with existing business structures
• Scales to support enterprise-class numbers of users and resources
• Improves end user experience with industry-leading ease of use

Comprehensive identity management

As part of HP's Identity Management suite, Select Identity works with HP Select Access to provide a comprehensive identity management solution. Select Access augments Select Identity’s provisioning and identity management functions with world-class access management and single-sign-on capabilities. Select Access provides a unified approach to defining authorization policies and securely managing real-time access to online resources, greatly reducing administration costs and complexity. Together, Select Identity and Select Access provide a comprehensive identity and access management solution for the enterprise. From access management, to provisioning, to workflow, HP delivers an integrated identity management solution to enable the Adaptive Enterprise.

Select Identity Licensing and Pricing

NSAi resells Select Identity at very reasonable prices.

Contact us for pricing on Select Identity.

Identity Management Services

NSAi also provides a full range of architecture, engineering, and implementation services surrounding Select Identity.