1 Hitachi ID Suite

Managing the User Lifecycle

Across On-Premises and
Cloud-Hosted Applications

Administration and Governance of

Identities, Entitlements and Credentials.

2 Agenda
Hitachi ID corporate overview.
The user management lifecycle.
Effective user lifecycle management with the Hitachi ID Suite:

Managing users and entitlements with Hitachi ID Identity Manager.

Managing authentication factors with Hitachi ID Password Manager.
Securing access to privileged accounts with Hitachi ID Privileged Access Manager.
Advantages of the Hitachi ID solution.

2015 Hitachi ID Systems, Inc. All rights reserved. 1

 Slide Presentation

3 Hitachi ID Corporate Overview

Hitachi ID delivers access governance

and identity administration solutions
to organizations globally.
Hitachi ID solutions are used by Fortune 500
companies to secure access to systems
in the enterprise and in the cloud.
Founded as M-Tech in 1992.
A division of Hitachi, Ltd. since 2008.
Over 1100 customers.
More than 14M+ licensed users.
Offices in North America, Europe and
APAC.
Partners globally.

4 Representative Customers

2015 Hitachi ID Systems, Inc. All rights reserved. 2

 Slide Presentation

5 Hitachi ID Suite

6 Business Challenges
Slow: Role changes:
More IT more too much paper, add/remove rights.
too many people.
users to manage. Expensive:
Policies:
enforced?
There are too many administrators Audit:
doing redundant work. are privileges appropriate?
challenges Org. relationships:
throughout the track and maintain.

user lifecycle.
Support cost.
User service.
Security. Reliable: Passwords:
notification of terminations. too many, too weak,
Fast: often forgotten.
response by sysadmins. Access:
Complete: Why cant I access that
deactivation of all IDs. application / folder / etc.

2015 Hitachi ID Systems, Inc. All rights reserved. 3

 Slide Presentation

7 HiIM Features

Automation:
Provision joiners, deactivate leavers.
Multiple HR feeds.

Requests portal:
Self-service profile updates.
Delegated security change requests.

Security controls:
Access certification.
RBAC and SoD.
Reports on current entitlements, history.

Workflow process:
Authorizers.
Implementers.
Certifiers.

Integrations:
110+ bidirectional connectors, included.
Incident management, SIEM, e-mail interfaces.
Manage building access, physical assets.

Identity synchronization:
Consistent data among apps.

2015 Hitachi ID Systems, Inc. All rights reserved. 4

 Slide Presentation

8 HiPM Features

Password synch:
Reduce the number of passwords per user.

Self service:
Password reset.
Clear lockout.
Smart card PIN reset.
Token PIN reset.
HDD key recovery.

Access from:
PC browser or login screen.
At the office or remote.
Smart phone or voice call.

Assisted service:
Password, token PIN, intruder lockout.

Policy enforcement:
Password complexity, expiry, history.
Non-password authentication.

Managed enrollment:
Security questions.
Login IDs.
Mobile phone numbers.

2015 Hitachi ID Systems, Inc. All rights reserved. 5

 Slide Presentation

9 HiPAM Features

Auto-discovery:
Find systems, accounts.
Attach policy.

Random passwords:
Default is daily.

Secure storage:
Replicated (with fault tolerance/queue).
Encrypted.
Geographically distributed.

Access controls:
Policy: who can sign into which account?

Workflow controls:
One time request/approval/login.

Single sign-on:
Launch SSH, RDP, vSphere, SQL, etc.
Alternately: display password, temporary group membership,
temporary SSH trust/SUDO rights.

Application passwords:
Notify SCM, IIS, Scheduler, DCOM of new passwords.
API to eliminate embedded passwords.

Logging:
Requests, approvals, logins to privileged accounts.

Session monitoring:
Screen, keyboard, webcam, process ID, window title, etc.

2015 Hitachi ID Systems, Inc. All rights reserved. 6

 Slide Presentation

10 Multi-Master Architecture

ord ,
sw nix
as , U 0, d,
ep
tiv nge AD S/39 P, o ste
a
N ha O DA 0 -h s
c L S 40 ud app
A ch
s y n ms
Clo aaS
ord yste
S
w
ss r s
Pa igge
pw tr
ate ith
Va
lid s w 90,
s tem OS/3
y : SA s
t s nt ce
ge ge r R rvi
ad cer Tar cal a , olde b se
Lo alan o
l nix e
b W h L,
Hitachi ID u wit SQ
server t ems : AD,
ys nt
se y t s ge etc
ver rox ge e a es,
Re eb p SQL Tar mot Not
w DB re AP,
S
N
VP erver n
s ad cer tio
Lo alan s ca B
pli
b tion ons SQL
ca ati
DB Re
nter
tifi vit e
IVR erver No nd in
t ac
Da
s a Hitachi ID
ts
ke server
Tic
m
ste ord r
ail
Sy f rec
o Fir
ew
all
ente
E-mystem c
t
ge ms ta
s
nt ste
m all Tar yste da
ide sy ew S te
mo
TCP/IP + AES Fir
Inc gmt
Various Protocols m
HR rA erv
er Re
Secure Native Protocol ente x y s ded)
c Pro f nee
ta (i
Da
HTTPS

2015 Hitachi ID Systems, Inc. All rights reserved. 7


11 Included Connectors
Many integrations to target systems included in the base price:
Directories:
Any LDAP, AD, WinNT, NDS,
eDirectory, NIS/NIS+.
Unix:
Linux, Solaris, AIX, HPUX, 24
more variants.
ERP:
JDE, Oracle eBiz,
PeopleSoft, PeopleSoft HR,
SAP R/3 and ECC 6, Siebel,
Business Objects.
WebSSO:
CA Siteminder, IBM TAM,
Oracle AM, RSA Access
Manager.
Servers:
Windows NT, 2000, 2003,
2008, 2008R2, 2012, Samba,
Novell, SharePoint.
Mainframes, Midrange:
z/OS: RACF, ACF2,
TopSecret. iSeries,
OpenVMS.
Collaboration:
Lotus Notes, iNotes,
Exchange, GroupWise,
BlackBerry ES.
Help Desk:
ServiceNow, BMC Remedy,
SDE, HP SM, CA Unicenter,
Assyst, HEAT, Altiris, Clarify,
RSA Envision, Track-It!, MS
System Center Service
Manager
2015 Hitachi ID Systems, Inc. All rights reserved.
Slide Presentation
Databases:
Oracle, Sybase, SQL Server,
DB2/UDB, Informix, Progress,
ODBC, Oracle Hyperion EPM
Shared Services, Cache.
HDD Encryption:
McAfee, CheckPoint,
BitLocker, PGP.
Tokens, Smart Cards:
RSA SecurID, SafeWord,
RADIUS, ActivIdentity,
Schlumberger.
Cloud/SaaS:
WebEx, Google Apps, MS
Office 365, Success Factors,
Salesforce.com, SOAP
(generic).
8
 Slide Presentation

12 Rapid Integration with Custom Apps

Hitachi ID Suite easily integrates with custom, vertical and hosted applications using flexible agents
.
Each flexible agent connects to a class of applications:
API bindings (C, C++, Java, COM, ActiveX, MQ Series).
Telnet / TN3270 / TN5250 / sessions with TLS or SSL.
SSH sessions.
HTTP(S) administrative interfaces.
Web services.
Win32 and Unix command-line administration programs.
SQL scripts.
Custom LDAP attributes.
Integration takes a few hours to a few days.
Fixed cost service available from Hitachi ID.

13 Competitive Advantages

Unique features Rapid deployment

"Provisioning" and "governance" in one Key features built-in, not custom:
product.
Access, authorization built around Request forms.
relationships. Authorization workflow.
Self-service from any device, any Access certification.
location. Auto-discovery.
Users can request resources, not groups. Reports.
SoD engine detects "effective" violations. A product, not a devel. environment.
Scalable platform Integrations
Real-time data replication. 110+ included connectors.
Multi-master architecture. Flexible connectors.
Proxy server to cross firewalls. Built-in implementers workflow.
Stored procedures, native code for speed. Incident management, SIEM, etc.

2015 Hitachi ID Systems, Inc. All rights reserved. 9

 Slide Presentation

14 Hitachi ID Suite Summary

A rich suite of identity and access management products, with over 14M licensed users, that can:
Discover and connect user objects from every system.
Streamline administration of users, entitlements and login credentials.
Construct and maintain OrgChart data.
Secure access to privileged accounts on thousands of systems.
Lock down security and comply with regulations requiring internal controls.
Reduce operating costs and improve user productivity.
Flexible, scalable, reliable, available.

500, 1401 - 1 Street SE, Calgary AB Canada T2G 2J3 Tel: 1.403.233.0740 Fax: 1.403.233.0725 E-Mail: sales@Hitachi-ID.com

www.Hitachi-ID.com Date: January 22, 2015 File: PRCS:pres