ANU Identity and Access Management

The ANU Identity and Access Management project will establish a central source of user information and access credentials.

Overview

What is the ANU Identity and Access Management project?

The ANU Identity and Access Management project was initiated towards the end of last year with its primary objective to provide the University community with a comprehensive and efficient identity and access management solution for all staff and student systems.

By collaboratively reviewing the University's existing solutions and gauging where user pain points are, the project has two main aims,

  • To ensure that the system infrastructure is in place to enable everyone to have the appropriate access to the systems they need, in the shortest possible timeframes and with minimal effort by both themselves and the staff provisioning the access.
  • To deliver the foundations for unified, consistent, robust and standardised business processes to support an individual's relationship with the ANU.

The infrastructure system to be implemented to support the authentication and access management solution at the University is the Oracle Identity Management suite.

Why are we doing the ANU Identity and Access Management project?

The current identity and access management solution at the University is inefficient, incomplete and out-dated. The results of this are many and varied and include costly and time consuming processes to provision new staff, inadvertent security breaches and inaccurate, inconsistent information being displayed in the staff directory.

The ANU Identity and Access Management project will address these issues by providing a centralised identity management solution that will improve identity accuracy and access management efficiency. Corporate risk will be reduced through the improved reporting and auditing ability of the supporting infrastructure.

Outcomes

The high level project objectives described below fall in the following main areas of focus:

  • User/account provisioning and de-provisioning
  • Access control/management
  • Wider application of Single Sign-On
  • Password/authentication management
  • Alignment with a federated model as an enabler for research collaboration.

Outcome 1: Increased staff productivity

The ability to ensure that staff have the appropriate access to the systems they need to do their jobs in the shortest possible timeframe with minimal effort by both themselves and staff provisioning the access will significantly reduce the waiting time required for a staff member to commence productive work, whether a new starter or moving within the university.

Outcome 2: Increase in effective utilisation of support staff

The effective utilisation of support staff will be enabled by the ability to readily identify an individual and their location, reduced effort required for frequently occurring tasks such as setting up new starters and will result in improved service provision capability and reduced response times for issues and problems.

Outcome 3: Increase in positive audit findings

The delivery of a comprehensive and efficient identity and access management solution for all staff and student systems will reduce corporate risk and improve compliance with the Australian Government Information Security Manual. This will lead to an improvement in audit ratings and a reduction in the number of related audit actions.

Outcome 4: Decrease in reportable security breaches

The project will facilitate a decrease in reportable security breaches by assisting to ensure that only the required people have the access they require to appropriate systems.

Outcome 5: Increase in effective communication

The project will facilitate increased effective communication through the provision of a comprehensive staff directory that is populated with up-to-date, accurate information.