Four Generations of Identity & Access Management (Story of dissatisfied customers)

By May 4, 2016 No Comments


Access 360, Netigrity, Waveset & BMC’s Control-SA could be remembered as the first generation in the domain of Identity & Access Management solution over a decade. On-boarding and off-boarding users was the biggest use of these IAM solutions, later on to be supplemented by managing access on the Web. It could take more than two to three years to have your basic provisioning system going with 4-5 applications.

The race in the second generation began with the horses like IBM, CA, & Oracle acquiring smaller companies to create for first time Identity Management Suites that would cost around half a million dollars (for 3000 users) with three times more money sunk in deployment services. They offered solution to more use-cases in provisioning & web access management. A set of System Integrators (SI) emerged to help customers implement those solutions on “Time & Material” (T&M) mode. The more project over ran, the more money was made by them. Very few systems integrates like Ilantus brought the concept of Fixed Fee implementations and Connector Factory to help customers implement these solutions faster and more economically. Customers also began looking for SIs to help them manage IAM installations, specially in the SMB sector. Again only a handful of SIs like Ilantus could develop this capability.

The need for security compliance revolving around “Governance” issues, basically triggered by SOX and other regulatory compliance needs gave birth to Access Governance in the third generations of IAM solutions. Aveksa and Sailpoint shortly introduced Access Governance technologies that focused more on governance than administration.

The fourth generation of IAM begun in the year 2012. Rechristened as Identity Governance & Administration (IGA), this generation is bringing in IDaaS (Identity as a Service) a cloud based approach to traditional IAM. While most of the fourth generation IAM vendors offer basic, low value commodity solutions like Single sign on, a few like Ilantus are offering complete set of IAM solution services that are relatively inexpensive and quick to adapt.

Customers have largely been dissatisfied so far with the first 3 generation of IAM solutions. Let us hope IDaaS vendors will be able to reverse this trend.

IAM Expert

Author IAM Expert

More posts by IAM Expert

Leave a Reply