Identity and Access Management Design and Implementation

From Smithnet Wiki

Jump to navigation Jump to search

Identification

Identification, authentication, authorization and accounting

Usernames and access cards

Biometrics

Authentication

Authentication factors

Something you have

Password authentication protocols

Single-sign-on and federation

RADIUS and TACACS

Kerberos and LDAP

SAML

OAuth and OpenID Connect

Certificate-based authentication

Authorisation

Understanding authorisation

Mandatory access controls

Discretionary access controls

Access control lists

Advanced authorisation concepts

Database access control

Account Management

Account types

Account policies

Password policy

Managing roles

Account monitoring

Privileged access management

Provisioning and deprovisioning

Retrieved from ‘https://www.smithnet.org.uk/wiki/index.php?title=Identity_and_Access_Management_Design_and_Implementation&oldid=231’