Access Granted: How Identity & Access Management (IAM) enables a secure and seamless online experience

Every day, we interact with numerous online systems – things like our personal email, work software, social media, and online banking. Understandably, we move in and out of these systems making assumptions about general data security but without really knowing what has been done in the background to ensure information is safe, secure and properly accessible. Identity and access management ensures the right level of system access. Without this, the specific functions you need as a user would be impacted and each system’s cybersecurity would be jeopardized. At York University, students, staff and faculty require access to different programs, systems and information throughout their time here. The Student Systems Renewal Program (SSRP) is transforming York’s online systems and processes, and its Identity and Access Management (IAM) project aims to ensure that across all its systems, the right people can use the right resources at the right time. 

The main elements of IAM are related to security, access and identity governance/administration. Think of it like a security guard at a building entrance who knows you but is able to ensure that you have the necessary access to the areas associated with your responsibilities. With IAM integrated with York’s systems, it will enable access and privileges to be provided based on each of our individual roles. This means that the systems will automatically recognize the roles of a user and will grant access accordingly, offering a more seamless and tailored user experience while also significantly reducing the manual work of IT staff.  

For example, someone working at York as a People Partner will require access to confidential information that will not (and should not) be accessible to others outside their position and information for their duties will be instantly accessible to them in a secure way. For students, access will be granted based on their profiles with criteria related to their faculty, year of study, etc.  

While today’s Passport York serves its purpose well, it is important for York to evolve IAM with modern technology to ensure that the right access to information is granted quicker and in a way that is even more safe and secure. As a user, the Passport York login will only look slightly different to you, meanwhile it will provide modern IAM technologies that ensure a seamless and secure experience, whether you’re a student, staff or faculty member, you simply need to enter your usual login credentials and IAM will take care of the rest.  

The first image is of the previous Passport York login page.
The second image is of the new Passport York login page.

While the IAM project is complete with SSRP, IAM’s capabilities and standards will soon be rolled out across the entire University through UIT. With the completion of the IAM project within SSRP, the proper technology foundation has been built and the work will continue to roll out the service over time. We look forward to sharing more progress with you soon on the blog. For more information on the SSRP’s other projects and new solutions coming soon visit the SSRP Projects page.