Overview#
Identity Lifecycle Management is the management of the Digital Identity and includes:All Organizations implement the business processes of Identity Lifecycle Management to perform CRUD operations user objects within their systems and perform Resource Provisioning.
 |
The typical steps in Identity Lifecycle Management are shown below.
Identity Lifecycle Management Enrollment#
Represents the steps taken when a new Digital Identity is created. This could be when- a new employee is hired
- a contractor starts work
- a customer or partner is initially granted access to the Organizational Entity's system.
Typically the Onboarding process involves creation of the Digital Identity and the appropriate Resource Provisioning
Identity Lifecycle Management#
Users are dynamic—they change names, addresses, responsibilities and more.Changes experienced by the Entity in the physical world must be reflected for the Digital Identity on systems and applications.
Identity Lifecycle Management Support#
Entity sometimes experience problems with systems and applications. They may , for example:- forget their password - Password Management
- require new or changes to their Resource Provisioning.
- resolve "other" user problems.
Some of these Identity Lifecycle Management Support items maybe handled by Self-regulating Provisioning or Self-provisioning.
Deprovisioning#
As an Entity has a finite lifespan and normally an even shorter relationship with Resource Provisioning entries.When Entity leaves due to:
- Account termination
- resignation
- retirement
- end of contract
- end of customer relationship
- etc.
Other Identity Lifecycle Management processes#
Incidentally, the term lifecycle does not imply that users who have been deactivated will necessarily be onboarded again. However, this does happen. For example, employees may leave a company and be re-hired later, or contractors may end their contract only to be hired as employees.
