As business processes become more and more flexible, internal and external parties need to be integrated in a quick but secure way. Therefore, IT systems need a reliable source of identities and their access rights to allow information flow in heterogeneous environments beyond system and company boundaries.
Up to now, monolithic architectures and single-vendor solutions have been typical for IdM implementations. But after having gone through some mergers and acquisitions, many companies are all of a sudden faced with IdM systems from different vendors, in different versions and at different locations. Migrating all of them to a single-vendor solution might be quite expensive or even unfeasible.
This is a real challenge, and at first sight, it seems to be a drawback, as the IdM architecture is no longer centralized: in fact it is typically distributed in several aspects, different in functionality and more difficult to administrate and maintain.
However, if the individual IdM systems are combined and deployed in the right manner, it can also be an advantage to keep them. An obvious reason is the protection of the investment already made in licenses, training etc.. But there are also a number of technical merits of a heterogeneous solution, depending on the architecture chosen, each with its proper pros and cons. These will be analyzed in detail.
Martin Kuppinger will interview Bernd Hohgräfe on how such an infrastructure of combined Identity Management systems in a hierarchical architecture with dedicated subsystems would look like.