Current IAM Components and Data Flows

 

The current Identity and Access Management system for VCU is a combination of multiple in-house developed programs, off-the-shelf programs, and connectors that transfer information between these components, authoritative identity sources, and down-stream consumers of identity data.  

In the current configuration, the nightly / daily batch cycles result in a three-day minimum provisioning period between when new user data is entered by HR and when the accounts and privileges are configured for system access.

In addition, there is no single identity vault where all user's identity data is stored; rather, there are several pseudo-vaults that store portions of the identity data.