University Information Technology Services
The Identity and Access Management (IAM) team implements and supports Identity-related applications and services. The following services are managed by IAM.
Trusted Source Reconciliation
Trusted Source Reconciliation is a process whereby data is reconciled from a system that drives the creation and maintenance of user identities into the Identity Management System. The system that is being reconciled from is referred to as the trusted source and is authoritative for the enterprise identities.
User Account Provisioning
User Account Provisioning is a process that manages identities across systems, applications, and resources.
Entitlement Management is a process that grants entitlements to an account enabling the account owner (user) to perform a specific task or function.
Web Single Sign-On (Web SSO)
Web Single Sign-On (Web SSO) is a process that gives users the ability to access multiple Secure Access web applications with a single login (authentication). Web SSO eliminates the need for additional or different logins to access other Secure Access applications during the same session.
Federation is a process that gives users the ability to use their single Secure Access login to access external web applications that reside outside of UMass’s organizational boundary. Federation eliminates the need for additional or different logins to access web applications at external organizations during the same session.
Reduced Sign-On (RSO)
Reduced sign-on (RSO) is a process that gives users the ability to access multiple applications using the same username and password but requires separate logins for each application. RSO eliminates the need for users to use different usernames and passwords to access each application.
Multi-Factor Authentication (MFA)
Please see the Multi-Factor Authentication (MFA) by Duo page for more information.