Once setup, the organization’s IT administrator uses the Identity Manager for user administration, setting authentication requirements, and managing account and password policies. To improve security and simplify the user experience, the identity manager provides for integration with Active Directory and Single Sign-On into application delivery.

By centralizing access and security policies in the Identity Manager, ROAM provides one point of security control for the organization’s computing resources. This allows for central auditing and reporting of all system access activity. This speeds up security administration and provides confidence that there are no “forgotten” access points to manage.

User Administration

Administrators can create users, assign roles and update the user profile information maintained in an electronic directory, like Active Directory. When users log on to ROAM, this information is checked to confirm the identity of the user and grant access to an information system or other resource.

ROAM provides organizations with the ability to distribute administration tasks related to system access to sub-organizations, departments, and groups. This fine granularity of control allows for the rapid distribution and optimization of work across a much wider group of staff so that response to changing requirements is expedited.

Integrated Authentication Support

The ROAM Identity Manager supports multi-factor authentication methods, including everything from simple passwords and token based solutions (e.g., RSA) to thumbprint readers – interfacing with your current authentication policies and leveraging existing investments. By applying ROAM authentication with any of up to 11 other authentication methods, ROAM can make multi-factor access-policy decisions to allow or deny access to internal applications and services.

Account and Password Policy Management

Using the Identity Manager, administrators can set guidelines for account usage and password requirements. Policies for expiring accounts and locking out accounts are set using the Identity Manager. Administrators also use this to set guidelines for passwords, such as length, valid duration and syntax.

Active Directory Integration

With ROAM, there is no need to become entangled in multiple directories. ROAM interacts with your organization's existing directory structure(s), so there's no extra work creating new identities. The ROAM identity manager can be integrated into existing solutions such as active directory or other directory based structures. In this way, administrators can focus on assigning “roles,” reducing the time that would have otherwise been spent creating multiple directories. This makes it easier to administer changes, easing the burden of user administration over multiple systems and avoids orphaned accounts.

Single Sign-On

ROAM provides Single Sign-on capability to applications delivered through ROAM. Users authenticate to ROAM and can then access applications without logging on for a second time. This eliminates the need to store multiple passwords, and more importantly, provides the user with an easy way to access multiple systems.