访问管理

运用用户访问控制保护关键业务信息

向员工提供关键业务信息的合理访问权限应当由企业而非IT部门管理。 That's why Dell One Identity empowers the business to govern the access necessary to operate in an agile and effective manner, while reducing the burden on IT.

For access governance Dell One Identity gives you the visibility and control necessary to:

  • 了解您环境内的具体情况以及谁拥有相关访问权限。
  • 让业务经理真正理解员工授权的意义,并据此授予访问权限。
  • Establish a continuous process to ensure that every individual has the right access to do their job, nothing more

请查看以下功能类别,查找适合您特定IT挑战的解决方案。

访问认证

Dell One Identity overcomes some of the biggest challenges associated with access attestation and recertification – namely the conflict between IT’s ability to gather the information (but lack of understanding of the actual business needs associated with entitlements) and the business’ understanding of who should access what (but lack of visibility into the actual systems and technologies that control entitlements). 了解详情 »

访问申请及执行

Dell One Identity provides an end-to-end solution for the entire lifecycle of providing employees with the access they need to do their jobs. One Identity automates request and fulfillment to move these processes out of the hands of IT and into the hands of the business. 了解详情 »

持续访问管理

Dell One Identity provides a closed-loop approach to access governance that ensures complete adherence to established policies and controls in the hands of the right people.

数据访问管理

Dell One Identity automates multi-platform data access governance to satisfy compliance requirements and quickly address security threats – and prevent them in the first place! 了解详情 »

企业账户开通管理

Dell One Identity enables automated, codeless, business-driven provisioning of user identities and access privileges enterprise-wide. One Identity adds identity intelligence to provisioning to overcome the typical security, cost, deployment and complexity limitations of "traditional" IAM frameworks at a fraction of the cost and deployment burden. Just-in-time provisioning to software-as-a-service (SaaS) applications, such as Salesforce.com, Google Apps and Office 365.

身份与访问同步

The Dell One Identity synchronizes identity data (users, groups, passwords and supporting data for roles) enterprise-wide to support a unified and intelligent approach to identity and access management.

身份智能

Dell One Identity consolidates all roles, actions, policies, rights and resources into a single, well-controlled and flexible IAM structure that adjusts as needs and systems evolve. One Identity provides you with control and a clear view of all IAM components, enabling you to make sound decisions based on real-time intelligence, thus reducing risk. 了解详情 »

角色管理

Dell One Identity helps you control access by providing an optimized structure with automation to address all of your enterprise role management needs. One Identity enables you to granularly define and administer roles, as well as attach business-driven access control, policy, workflows and attestations to roles in order to meet security, efficiency and compliance objectives. 了解详情 »

请浏览以下技术平台类别,查找适合您独特IT挑战的解决方案。

访问认证

Dell One Identity overcomes some of the biggest challenges associated with access attestation and recertification – namely the conflict between IT’s ability to gather the information (but lack of understanding of the actual business needs associated with entitlements) and the business’ understanding of who should access what (but lack of visibility into the actual systems and technologies that control entitlements). 了解详情 »

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。
  • Identity Manager-Active Directory Edition
    Identity Manager Active Directory Edition empowers end users and managers to fulfill Active Directory group management and attestation via a simple and customizable request portal, reducing the burden on IT.
  • Identity Manager-Data Governance Edition
    Protect the business by giving those who actually know who should access sensitive data the power to analyze, approve and fulfill unstructured data access requests.

业务驱动型验证

One Identity moves access certification away from IT and firmly into the hands of business managers. With One Identity, those that are in the know, now have quick and easy access to all the information they need to confidently review and certify access rights across the entire enterprise.

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。
  • Identity Manager-Active Directory Edition
    Identity Manager Active Directory Edition empowers end users and managers to fulfill Active Directory group management and attestation via a simple and customizable request portal, reducing the burden on IT.
  • Identity Manager-Data Governance Edition
    Protect the business by giving those who actually know who should access sensitive data the power to analyze, approve and fulfill unstructured data access requests.

访问申请及执行

Dell One Identity automates the process of approving access requests according to established security and compliance policies. 身份职能具有直观的界面,您可通过一个完整的工作流程即时处理访问请求,包括所有必需的审批、审核跟踪及通知。 One Identity eliminates the delays and errors associated with IT-driven access request and fulfillment.

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。
  • Identity Manager-Active Directory Edition
    Identity Manager Active Directory Edition empowers end users and managers to fulfill Active Directory group management and attestation via a simple and customizable request portal, reducing the burden on IT.
  • Identity Manager-Data Governance Edition
    Protect the business by giving those who actually know who should access sensitive data the power to analyze, approve and fulfill unstructured data access requests.

面向业务经理的可视功能

One Identity gives business managers complete visibility into what their employees have access to (in terms they understand). 视图将根据经理角色、须知因素自动生成,同时可密切关注职责分离和既定策略的情况。

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。
  • Identity Manager-Active Directory Edition
    Identity Manager Active Directory Edition empowers end users and managers to fulfill Active Directory group management and attestation via a simple and customizable request portal, reducing the burden on IT.
  • Identity Manager-Data Governance Edition
    Protect the business by giving those who actually know who should access sensitive data the power to analyze, approve and fulfill unstructured data access requests.

详细的重新认证

One Identity not only shows managers "what" their employees have access to, but it also provides complete drill-down details that make recertification even more accurate. One Identity augments the "what" of access certification with a view into how the employee got the access in question, who approved it and when, and even why that access was granted in the first place.

访问申请及执行

Dell One Identity provides an end-to-end solution for the entire lifecycle of providing employees with the access they need to do their jobs. One Identity automates request and fulfillment to move these processes out of the hands of IT and into the hands of the business. 了解详情 »

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。
  • Identity Manager-Active Directory Edition
    Identity Manager Active Directory Edition empowers end users and managers to fulfill Active Directory group management and attestation via a simple and customizable request portal, reducing the burden on IT.
  • Identity Manager-Data Governance Edition
    Protect the business by giving those who actually know who should access sensitive data the power to analyze, approve and fulfill unstructured data access requests.

身份自助服务

One Identity gives users and managers the ability to request access without engaging in an endless round of emails and phone calls. 熟悉的购物车界面(由基于角色的规则控制)结合所有必需的审批和审核追踪,可确保员工获得所需权限,同时帮助经理从一开始即保持员工的工作效率。

  • ActiveRoles Server

    ActiveRoles Server可为以Windows为中心的环境提供即时的用户和群组账户管理、基于管理员严格执行的角色安全保护、日常身份管理、内置审核和报告功能。

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。
  • Identity Manager-Active Directory Edition
    Identity Manager Active Directory Edition empowers end users and managers to fulfill Active Directory group management and attestation via a simple and customizable request portal, reducing the burden on IT.
  • Identity Manager-Data Governance Edition
    Protect the business by giving those who actually know who should access sensitive data the power to analyze, approve and fulfill unstructured data access requests.

自动执行

One Identity ensures that fulfilling access requests happens rapidly and completely without requiring IT intervention. One Identity's modeled approach to IAM means that a single request, workflow and approval process results in a rapid and accurate provisioning of all required access.

  • ActiveRoles Server

    ActiveRoles Server可为以Windows为中心的环境提供即时的用户和群组账户管理、基于管理员严格执行的角色安全保护、日常身份管理、内置审核和报告功能。

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。
  • Identity Manager-Active Directory Edition
    Identity Manager Active Directory Edition empowers end users and managers to fulfill Active Directory group management and attestation via a simple and customizable request portal, reducing the burden on IT.
  • Identity Manager-Data Governance Edition
    Protect the business by giving those who actually know who should access sensitive data the power to analyze, approve and fulfill unstructured data access requests.

可配置的工作流程

One Identity overcomes the time, cost and functionality shortcomings of traditional enterprise provisioning solutions by leveraging a modeled approach to IAM. One Identity workflows are easily configured rather than entirely customized, which provides much quicker deployment times and dramatically increased flexibility. 这些执行过程可包含最复杂环境的所有自助服务、自动审批、通知和执行需求。

持续访问管理

Dell One Identity provides a closed-loop approach to access governance that ensures complete adherence to established policies and controls in the hands of the right people.

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

身份仪表盘报告

One Identity presents entitlement, request, fulfillment and certification data in clear, easy-to-understand dashboard displays. 仪表盘视图采用基于角色的原则,使您能够(直接使用仪表盘)以一种易于理解、说明和操作的方式向业务经理展示他们需要的数据。

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

定期管理

One Identity removes the manual, error-prone processes typically associated with IT-driven access governance. With One Identity, attestations can be scheduled to occur regularly, automatically generating the required data, presenting it to the appropriate mangers, and notifying all relevant parties of the required action.

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

历史报告

One Identity augments the "who has access to what right now" reports required for recertification and provides complete visibility into the historical aspect of who has ever had access to a particular resource, and what any individual has ever had access to.

数据访问管理

Dell One Identity automates multi-platform data access governance to satisfy compliance requirements and quickly address security threats – and prevent them in the first place! 了解详情 »

  • Identity Manager-Data Governance Edition
    Protect the business by giving those who actually know who should access sensitive data the power to analyze, approve and fulfill unstructured data access requests.
  • Site Administrator for SharePoint
    了解、管理和保护您的SharePoint环境,让业务内容所有人获得Site Administrator for SharePoint增强了安全性的集中式管理、安全和报告功能。

查找用户和资源

谁是您的用户?您的环境中有哪些资源(例如共享文件)? One Identity enables you to discover and document the extent of SharePoint, and identify unstructured or orphaned data.

  • Identity Manager-Data Governance Edition
    Protect the business by giving those who actually know who should access sensitive data the power to analyze, approve and fulfill unstructured data access requests.
  • Site Administrator for SharePoint
    了解、管理和保护您的SharePoint环境,让业务内容所有人获得Site Administrator for SharePoint增强了安全性的集中式管理、安全和报告功能。

数据和访问权限分类

对数据进行分类,以识别其是否具有机密性、是否受任何法规影响(例如需按照PCI的规定处理信用卡号码)、是否依然具有相关性,或应进行归档? 确定数据的业务所有人,并评估您的身份与访问管理策略。

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。
  • Identity Manager-Data Governance Edition
    Protect the business by giving those who actually know who should access sensitive data the power to analyze, approve and fulfill unstructured data access requests.

分配数据所有人和审批人

根据角色、所在地或其它属性,分配数据的相关业务所有人。 随后将由业务所有人而非IT人员授予访问权限。 进行必要的合规性检查,以确保职责分离并为未来申请建立自动化的工作流程。

  • Change Auditor

    The Change Auditor family of products audits, alerts and reports on all changes made to: Active Directory (ADAM/ADLDS), Exchange, EMC, NetApp, SQL Server, Windows file servers and even queries against Active Directory—all in real time and without enabling native auditing.

  • Enterprise Reporter
    Enterprise Reporter is a scalable solution for auditing, analyzing and reporting on the configuration of Microsoft Active Directory, Windows Server and SQL Server across the enterprise.
  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。
  • Identity Manager-Data Governance Edition
    Protect the business by giving those who actually know who should access sensitive data the power to analyze, approve and fulfill unstructured data access requests.
  • Site Administrator for SharePoint
    了解、管理和保护您的SharePoint环境,让业务内容所有人获得Site Administrator for SharePoint增强了安全性的集中式管理、安全和报告功能。

访问审核及报告

安排定期进行业务级访问认证,以确保准确性和安全性。 为审核人员生成详细报告,以证明是否符合规定。

  • ActiveRoles Server

    ActiveRoles Server可为以Windows为中心的环境提供即时的用户和群组账户管理、基于管理员严格执行的角色安全保护、日常身份管理、内置审核和报告功能。

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。
  • Identity Manager-Data Governance Edition
    Protect the business by giving those who actually know who should access sensitive data the power to analyze, approve and fulfill unstructured data access requests.

自动执行访问申请及问题补救

使用访问申请门户,让用户能够基于各自的角色申请访问资源。 相关人员可查看访问活动,以验证并使用自动响应功能纠正所有违规情况。

  • Change Auditor

    The Change Auditor family of products audits, alerts and reports on all changes made to: Active Directory (ADAM/ADLDS), Exchange, EMC, NetApp, SQL Server, Windows file servers and even queries against Active Directory—all in real time and without enabling native auditing.

  • Identity Manager-Data Governance Edition
    Protect the business by giving those who actually know who should access sensitive data the power to analyze, approve and fulfill unstructured data access requests.
  • InTrust

    InTrust可安全地收集、存储、报告和提示来自Windows、Unix和Linux系统的事件数据,从而帮助您遵守外部法规、内部政策和最佳安全规程。

防止非法变更

确保您重视的敏感数据、组或访问权限不被更改,同时设置实时提醒,当出现企图进行变更的操作时,您将得到实时通知。 所有变更都将记录在一个不会被更改且独立于标准事件日志的安全存放处,供以后作详细分析时使用。

企业账户开通管理

Dell One Identity enables automated, codeless, business-driven provisioning of user identities and access privileges enterprise-wide. One Identity adds identity intelligence to provisioning to overcome the typical security, cost, deployment and complexity limitations of "traditional" IAM frameworks at a fraction of the cost and deployment burden. Just-in-time provisioning to software-as-a-service (SaaS) applications, such as Salesforce.com, Google Apps and Office 365.

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

无代码式账户开通

One Identity enables you to provision, re-provision and de-provision user accounts and group membership access to any system, platform or application within the enterprise (physical or virtual) with an emphasis on configuration rather than customization.

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

自动化工作流程

通过业务人员的申请启动账户开通操作,依据既定且可靠的工作流程及审批,自动执行必要的操作。

Just-in-time Cloud Provisioning

Just-in-time provisioning to software-as-a-service (SaaS) applications, such as Salesforce.com, Google Apps and Office 365.

身份与访问同步

The Dell One Identity synchronizes identity data (users, groups, passwords and supporting data for roles) enterprise-wide to support a unified and intelligent approach to identity and access management.

组同步

同步Active Directory、集成型应用程序或数据源目录间的授权对象(通常为组)。

身份同步

针对其他系统或来自其他系统的同步身份(一般为用户账户)可允许Active Directory用户登录非Active Directory应用程序或数据源。 注意:PeopleSoft连接器仅能通过PeopleSoft与其他系统同步。

密码同步

在账户创建过程中设定初始密码,捕获Active Directory中的密码变更,并在相联系统之间同步密码。

身份智能

Dell One Identity consolidates all roles, actions, policies, rights and resources into a single, well-controlled and flexible IAM structure that adjusts as needs and systems evolve. One Identity provides you with control and a clear view of all IAM components, enabling you to make sound decisions based on real-time intelligence, thus reducing risk. 了解详情 »

  • Authentication Services
    Authentication Services采用跨平台访问控制来实现合规性,利用集中验证和单点登陆来提高运营效率,并通过统一身份与合并目录来简化身份与访问管理。
  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

IAM的基石

One Identity provides a unifying model to establish and implement enterprise-wide policies and roles to ensure they are applied consistently and efficiently. 这意味着所有的IAM操作(如账户开通操作)都是根据企业事先定义的规则和策略执行的。 一组控制因素即可影响整个企业的IAM。

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

360度可视性

One Identity's identity intelligence capabilities deliver a complete 360-degree view of all components of IAM, their relationships to each other, the policies and rules that affect them and the impact of changes to present and future IAM operations. With One Identity, business managers gain complete visibility into what their employees have access to - in terms they understand.

  • ActiveRoles Server

    ActiveRoles Server可为以Windows为中心的环境提供即时的用户和群组账户管理、基于管理员严格执行的角色安全保护、日常身份管理、内置审核和报告功能。

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

面向企业优化的IAM

One Identity enables you to implement an IAM strategy that best suits your organization. Identity intelligence capabilities take into account your organizational structure and culture, operational requirements as well as existing (or new) roles, rules and policies.

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

动态调整

One Identity supports your continually evolving identity, policy and access requirements. 该解决方案的身份智能功能可根据IAM环境的变化作出动态调整。 Access rights are automatically updated as roles evolve, new systems come online or new personnel are introduced into the IAM mix

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

建立关联

One Identity enables you to easily and accurately correlate user identities, roles and policies to access requirements, systems and regulations. 通过在IAM组件之间建立起联系,访问权限将随着角色发生变化、新系统上线或新员工加入IAM,自动更新。

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

智能控制

One Identity improves virtually any IAM operation by infusing a layer of identity intelligence, enabling you to optimize IAM for your environment, organizational needs and objectives. 例如,企业账户开通操作是由一套常用的角色和策略进行控制,可针对变化实现动态调整。

角色管理

Dell One Identity helps you control access by providing an optimized structure with automation to address all of your enterprise role management needs. One Identity enables you to granularly define and administer roles, as well as attach business-driven access control, policy, workflows and attestations to roles in order to meet security, efficiency and compliance objectives. 了解详情 »

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

角色管理自动化

One Identity provides the structure and automation that enables you to unify roles enterprise-wide and use them to control access, improve security and maintain compliance. 简单、熟悉的界面让角色管理更加简单、自动化,使之不再像手动管理或传统的IAM框架解决方案那样繁琐、易错。

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

灵活的角色结构

One Identity overcomes the major challenge of enterprise role management – the process of defining and executing roles – by delivering a powerful and extremely flexible structure upon which roles can be defined, correlated with user identities, tied to business-driven workflows and controlled through business-defined attestations.

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

业务驱动型流程

One Identity enables you to build access control based on defined and established roles correlated with business processes and needs. 借助于这种灵活的方法,您现在能够根据贵企业的文化、管理工作量和环境来实施访问控制。

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

角色生命周期管理

One Identity automates and provides structure for the entire lifecycle of enterprise roles. 您可以轻松、准确地创建及修改角色、更改它们与特定访问接入点的关联及将其分配给个人。

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

基于角色的访问控制(RBAC)

One Identity helps you implement role-based access control (RBAC) enterprise-wide through the establishment, execution and administration of strong role management principles. One Identity's automation, structure and business-driven focus moves role-based access control from a difficult-to-achieve objective to a functional reality.

  • Identity Manager
    戴尔One Identity Manager简化了用户身份、访问权限和安全性的管理。 身份与访问管理(IAM)如今可在不受IT资源和能力限制的情况下,满足您的业务需要。

角色挖掘

One Identity provides an abstraction layer that enables you to automatically use identities and their access rights to establish the appropriate roles. 这些自动执行的角色挖掘功能运用统计分析来定义角色,并将它们正确分配给个人,甚至还能解决必要的例外情况。

借助于我们出色的支持团队、培训计划和实施服务,您能够从投入中获得最大效益。