ishenwei/nexus
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
914c8f6925aed40c2381e1f9d977e70ab1fdceb7
nexus/wiki/sources/learning-sessions-identity-governance-vsm-replacement-20231128-160326-meeting-re.md
weishen fc0dde291f Auto-sync: 2026-04-19 14:51
2026-04-19 14:51:38 +08:00

57 lines
2.8 KiB
Markdown
Raw Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
---
title: "Learning Sessions Identity Governance VSM Replacement 20231128 160326 Meeting Recording"
type: source
tags:
- Identity-Governance
- VSM
- CTP
- IAM
- IGA
date: 2023-11-28
---
## Source File
- [[raw/Cloud & DevOps/Public-Cloud-Learning-Sessions/02_IAM/learning-sessions-identity-governance-vsm-replacement-20231128-160326-meeting-re.md]]
## Summary
- 核心主题Identity Governance身份治理以及用其替换 VSMVirtual Service Manager的计划
- 问题域IT 身份管理、访问控制、权限自动化
- 方法/机制:使用 Micro Focus IGAIdentity Governance and Administration通过工作流自动化访问审批和撤销
- 结论/价值:实现内部和外部用户(包括合同工)的访问管理,支持时间限制访问,强化安全合规
## Key Claims
- 身份治理框架用于高效管理数字身份、最大限度地降低风险并保持合规性
- IGA 与 AWS Identity Center 集成,通过 IAM 提供资源访问
- 计划用 IGA 替换所有账户的 VSM采用相同架构但 IGA 连接到 Coptum 域
- 访问请求通过审批流程,批准后自动授予访问权限
## Key Quotes
> "Identity governance is a framework for managing digital identities efficiently, minimizing risk, and maintaining compliance." — 会议核心定义
> "Key questions addressed by identity governance: who currently has access to our systems, who should have access, and how is the access being done?" — 身份治理的核心问题
> "IG is used to provide access to both internal and external users, including contractors, with time-limited access." — IGA 的适用范围
## Key Concepts
- [[Identity-Governance]]:管理数字身份、降低风险并保持合规的框架
- [[VSM]]Virtual Service ManagerDXC 工具,正在被 IGA 替换
- [[IGA]]Identity Governance and Administration身份治理与管理解决方案
- [[IGA-Portal]]IGA 的用户门户,用于搜索资源、请求访问、填写表单
- [[Active-Directory-Group]]AD 组代表角色IGA -governs 访问这些组
- [[AWS-Identity-Center]]AWS 身份中心,与 IGA 集成提供资源访问
## Key Entities
- [[Micro-Focus]]:提供 IGAIdentity Governance and Administration产品的公司
- [[OpenText]]:举办本次 Learning Session 的公司
- [[AWS-Identity-Center]]AWS 身份认证和访问管理服务
## Connections
- [[IGA]] ← provides_access ← [[AWS-Identity-Center]]
- [[Active-Directory-Group]] ← governs ← [[IGA-Portal]]
- [[VSM]] ← replaced_by → [[IGA]]
## Contradictions
- 与 [[VSM]] 旧架构冲突:
- 冲突点VSM 使用旧的身份管理方式IGA 提供更自动化的访问控制
- 当前观点:通过 IGA 实现自动化工作流和审计
- 对方观点VSM 作为 DXC 传统工具仍被部分系统使用
Reference in New Issue View Git Blame Copy Permalink