User Provisioning Overview

User Provisioning helps organizations more quickly, cheaply, reliably, and securely to manage information about users on multiple systems and applications.

People are represented by user objects or login accounts on different systems and applications.

User objects generally consist of:

• A unique identifier.

• A description of the person who has been assigned the user object—principally their name.

• Contact information for that person, such as their e-mail address, phone numbers, mailing address, etc.

• Organizational information about that person, such as the ID of their manager, their department or their location.

• A password and/or other authentication factors.

User provisioning systems are intended to help organizations streamline user lifecycle processes so that updates to user objects on their systems and applications can be made:

• More quickly—so users don't have to wait for changes.

• More efficiently—to reduce the cost of managing systems and applications in response to user lifecycle events.

• More securely—to reduce the risk of system compromise due to user objects that have outlived their usefulness, due to inappropriate security entitlements and due to easily guessed or otherwise compromised passwords.

Organizations implement business processes to create, manage and delete user objects on their systems and applications:

• Onboarding:

• Management:

• Support:

• Deactivation:

User Provisioning frees up Help Desk resources, while at the same time drastically reducing the number of human errors introduced into the IBM i user profile definitions. There is a well-defined, easy-to-implement workflow which ensures painless integration into any company’s user structure.