Identity and Access Management (IAM)
Identify and Access Management (IAM) program aims to provide crucial infrastructure enabling SLAC to grow its mission. SLAC has ambitious goals to expand its impact in science and research domains. To support this growth, SLAC IT must create secure and efficient identity and access processes.
By admin
The SLAC IAM (Identity and Access Management) program is a multi-year, multi-project effort led by SLAC IT. Working with Stanford UIT, peer institutions, and vendor partners, SLAC IT will implement identity and access management processes that make connecting with SLAC systems easier.
The program has three domains. These are identity management, access management, and program details. Within each domain, several projects exist, including developing a single-sign-on experience and a modern infrastructure that fits most use cases but is adaptable for future needs.
The SLAC IAM Program will accomplish several goals. These are:
- Uniform user web single sign-on experience for all strongly affiliated SLAC staff
- One Stanford/SLAC user account to manage
- Federated user registration for SLAC facility users and other visitors
- Modern core IAM infrastructure that is adaptable to most use cases at SLAC as well as to future needs of research and administration.
- All core IAM infrastructure is highly-available, cloud-hosted, and geo-diverse.
- Compliant and secure IAM services which meet or exceed DOE, Stanford University, and industry standards.
Resources & Links
PRIMARY POC: Bruce Vincent
PROJECT MANAGER: Erika Everingham
Timeline
Group Service Project - In production
Managed Endpoint Project - In production
Integration Middleware Project - go live Jan 2023, with rolling functionality throughout 2023
Person Registry Project (Facility User Onboarding) - currently in build phase – go live late spring 23
Federated SSO Project - plan/design phase, evaluation
