Recent Posts by Samuel Carter

Samuel Carter is interested in the design and development of innovative security tools, systems, and services for K-20 institutions and enterprises alike. As Training and Development Manager, he leads the internal and external training efforts that keep customers, employees, and partners knowledgeable about the latest Identity Automation products and services. In addition, he engages in a variety of business development activities using the latest technologies in security, identity and access management, and *-as-a-Service cloud-based paradigms to enable growth opportunities within and between Identity Automation, its partners, and customers.
Find me on:

A Just In Time Approach to Edge Use Access

No single access methodology can effectively manage every access use case across an organization. While Role-Based and Attribute-Based Access Controls (RBAC and ABAC) can cover the majority of a given user’s access needs, neither method is ideally suited for every use case; there will always be exceptions.

Read More

Why Role Nesting and Role Mining Won't Address Your Access Management Needs

As the number of employees, vendors, contractors, and departments within an organization grows, so too does the complexity associated with managing access to a growing number of applications and systems.

System administrators commonly manage this complexity by preemptively creating more roles for exceptions and edge use cases. And organizations with more limited or older legacy Identity and Access Management (IAM) systems often have no choice but to handle new access requests by assigning new roles to a user.

Read More

Data Best Practices to Follow for a Successful IAM Implementation, Data Series Part 3

Data is found at every point in the process and just about everything inside of the IAM systems relies on that data. While we might sound like a broken record, the better shape your data is in, the more successful (and easier, faster, cheaper, and less painful) your IAM implementation and ongoing operations will be.

Read More

Why Role-Based and Attribute-Based Access Controls Alone Aren't Enough

Identity and Access Management (IAM) systems provide organizations with dynamic, wide-ranging methods for controlling access to their applications, systems, and proprietary resources. Role-Based and Attribute-Based Access Controls (RBAC and ABAC) are two of the most widely known and used methods.

Read More

The Top Data Challenges Facing Your IAM Implementation, Data Series Part 2

In part one of our series on data, we discussed how data is the lifeblood of any IAM system. To recap, IAM systems manage the authentication and access of users to organizational systems, applications, and resources. Each user has an account that’s used to log into different applications and systems. Depending on who a user is and his or her attributes, the IAM system determines what the user has access to and what he or she can do within those systems.  

Read More

The Importance of Good Data in Any IAM Implementation, Data Series Part 1

Data is the lifeblood of any Identity and Access Management (IAM) system. It can make or break an implementation. Complete and accurate data empowers your organization to provide users with an unbelievable set of tools that increase security, improve business processes, and reduce risk.  

Read More

Evaluating Common Account Username Conventions Used By Universities

Around the world, colleges and universities are welcoming students, faculty, and staff back for the fall semester. Those who are new to campus will undoubtedly need a few days to find their way around, remember their class schedules, and, of course, memorize their newly issued usernames.

Read More

Why Your Organization Needs an Enterprise-Wide Account Username Convention

Is your organization using more than one account username conventions for your different systems and applications? If so, your organization isn’t alone. Since there is no one-size-fits-all naming convention, creating a single, enterprise-wide account username convention is easier said than done. However, using the right methodology, it is not only possible to create an enterprise-wide account username convention, but one that is an optimal fit for your organization.

Read More

6 Guiding Principles for Selecting a Multi Factor Authentication Solution - MFA 101, Part 3

Now that we’ve
built a base knowledge of multi factor authentication (MFA) and discussed the reasons why your organization might need and benefit from it, it’s time to talk about what to take into consideration when selecting and implementing an MFA solution.

Read More

The Challenges and Benefits of Multi factor Authentication - MFA 101, Part 2

In part 1 of our MFA 101 series, we talked about what multi factor authentication is and many of the common terms and factor types. Now that we’ve covered the basics of multi factor authentication, it’s important to consider the WHY. As in, what motivates an organization to implement multi factor authentication?

Read More

Subscribe Here!