Identity and Access Management (IAM)

What is Identity and Access Management (IAM)?

Identity and Access Management (IAM) is a framework consisting of technical, policy, and governance components that allows an organization to:

  • identify individuals
  • link identities with roles, responsibilities and affiliations
  • assign privileges, access, and entitlements based on identity and associations

IAM permits data stewards and service providers to control access to information and/or services, according to an individual's identity, roles and responsibilities

 

IAM is comprised of four main areas:
Credentialing (assignment of an unique token to an entity needing access to resources)
Authentication (act of validating proof of identity)
Authorization (act of affording access to only appropriate resources and functions)
Accountability (ensuring against illegitimate utilization of an entity’s authority…flows from the first 3 functions)
Functional View of IAM Environment
 

All contents copyright © 2012. Arizona Board of Regents

University of Arizona
Copyright 2013 © Arizona Board of Regents