Subscribe / Unsubscribe Enewsletters | Login | Register

Pencil Banner

How to avoid flaws in identity management

Haf Saba | Sept. 1, 2010
IT managers need a secure and cost-effective approach to identity and access management.

Flaw 2: Lack of a centralised identity management solution

Organisations should consolidate and centralise the access controls with one directory service. From here, the access can be extended to other systems and applications to encourage consistent security and configuration policies. Drive down the management headache and drive down the management cost.  

Risking having multiple accounts to manage on various systems gives way for a lack of synchronisation and upkeep and multiple points of a breach that can be hard to track if there are many diverse systems. Its easy to stay under the radar when not everything is accessible from a central location and a generic system that isnt centrally managed may be the back door that allows for unauthorised access.

Flaw 3:  No secure privilege delegation

As we delve deeper into IT security and privilege in the data centre, we must understand how the definition of privilege is evolving. The excessive privileged and access control rights for users have critical financial impact on organisations with regard to the risk of a data breach, revenue loss and compliance fines.

To reduce the chances of unduly solicitation of data by outsiders, it is recommended that organisations implement tighter control by reducing the number of administrators. It eliminates the risk of accidents by managing tightly who can do what, improve auditing, streamline and simplify compliance.

To summarise, managing the identity and integrating identity into an organisation helps protect assets and reduce the impact of a breach. Risks can be properly mitigated, compliance penalties may be avoided, and in general, the overall access to critical information is under tighter control.

Haf Saba is senior solutions specialist, NetIQ, Asia Pacific.


Previous Page  1  2 

Sign up for Computerworld eNewsletters.