Published on 14 Mar 2013
“ With Tivoli Identity Manager, we have an absolute fail safe that as associates leave, their access is removed. The process is instantaneous. ”
Kyle F. Kennedy, Director of Global Directory and Identity Services, ADP
Computer Services, Professional Services
For many companies, it can take days or weeks when an employee departs to revoke his or her access to buildings and IT systems. At ADP, the process is instantaneous thanks to its work with IBM and IBM Business Partner Pontis Research
Manual identity management processes made it time-consuming and costly to track when and if access rights are revoked.
With a view to becoming “identity aware,” ADP worked with IBM Business Partner Pontis Research and IBM to automate processes for user account provisioning, de-provisioning and access management in its Active Directory, remote access and facility management systems.
● Vastly increases security by reducing time to revoke access from weeks to seconds ● Reduces administration and help-desk costs while enhancing visibility of user access ● Provides zero-day and zero-based provisioning and federated access to resources ● Enables identity awareness
IBM products and services that were used in this case study.
Tivoli Federated Identity Manager
© Copyright IBM Corporation 2013 IBM Corporation Software Group Route 100 Somers, NY 10589 Produced in the United States of America February 2013 IBM, the IBM logo, ibm.com, and Tivoli are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the web at “Copyright and trademark information” at ibm.com/legal/copytrade.shtml Microsoft and Active Directory are trademarks of Microsoft Corporation in the United States, other countries, or both. This document is current as of the initial date of publication and may be changed by IBM at any time. Not all offerings are available in every country in which IBM operates. The performance data and client examples cited are presented for illustrative purposes only. Actual performance results may vary depending on specific configurations and operating conditions. It is the user’s responsibility to evaluate and verify the operation of any other products or programs with IBM products and programs. THE INFORMATION IN THIS Word documentUMENT IS PROVIDED “AS IS” WITHOUT ANY WARRANTY, EXPRESS OR IMPLIED, INCLUDING WITHOUT ANY WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND ANY WARRANTY OR CONDITION OF NON-INFRINGEMENT. IBM products are warranted according to the terms and conditions of the agreements under which they are provided. The client is responsible for ensuring compliance with laws and regulations applicable to it. IBM does not provide legal advice or represent or warrant that its services or products will ensure that the client is in compliance with any law or regulation. Statement of Good Security Practices: IT system security involves protecting systems and information through prevention, detection and response to improper access from within and outside your enterprise. Improper access can result in information being altered, destroyed or misappropriated or can result in damage to or misuse of your systems, including to attack others. No IT system or product should be considered completely secure and no single product or security measure can be completely effective in preventing improper access. IBM systems and products are designed to be part of a comprehensive security approach, which will necessarily involve additional operational procedures, and may require other systems, products or services to be most effective. IBM does not warrant that systems and products are immune from the malicious or illegal conduct of any party. WGC12351-USEN-00