About

 

The Identity and Access Management (IAM) Team at [University Name] is responsible for managing digital identities and controlling access to university systems, applications, and resources. Our mission is to ensure that students, faculty, staff, and affiliates have secure, reliable access to the tools they need to learn, teach, and work — while safeguarding university data and supporting compliance requirements.

Our Modernization Journey

For many years, the University relied on a custom-built, in-house IAM system that served us well but became increasingly difficult to maintain, extend, and integrate with modern applications. We are now in the midst of a significant transition to a modern, standards-based IAM platform built on industry-leading open-source technologies. This shift positions the University to better support evolving security requirements, faster onboarding of new applications, and improved self-service capabilities for the campus community.

Our Core Platform

Our new IAM environment is built on four foundational systems:

• midPoint — our identity governance and lifecycle management platform, responsible for provisioning, deprovisioning, and managing the full identity lifecycle across connected systems.
• Grouper — our group and role management system, enabling fine-grained, policy-driven access control and delegated group administration.
• OpenLDAP — our open-source directory service, providing standards-based directory access for applications across the University.
• Active Directory — our long-standing directory service for Windows-integrated authentication, file shares, and Microsoft ecosystem services, continuing to play a central role alongside our new platforms.

Together, these systems form a flexible, scalable foundation that supports authentication, authorization, and identity governance across the University.