Updated on 2025-05-22 GMT+08:00

SEC02-04 Integrated Identity Management

Create a unified identity management system across the company to centrally manage the private cloud, public cloud, and the accounts on the public cloud.

  • Risk level

    Medium

  • Key strategies
    • Create a unified identity management system across the company to centrally store user identity information.
    • The system supports identity federation between private and public cloud IAM systems, enabling seamless cross-cloud access for users.
    • The system is integrated with the company's HR process. User creation, change, and deletion can be triggered when an employee joins, change positions, or leaves the company.
    • With IAM Identity Center in a multi-account environment built on Landing Zone, you can centrally manage user identities and their access to resources, eliminating per-account IAM user creation and simplifying identity permission management.
    • The system establishes identity federation with IAM Identity Center, eliminating the need for separate federation with each account's IAM system.
  • Related cloud services and tools
    • IAM Identity Center
    • IAM
    • OneAccess