Identity Management

Service category: Account & Access

The Identity Management System (IDM) is the underlying infrastructure for the management of authorisations which give individuals access to the mostly IT-based resources of the University. The IDM draws its data largely automated from the administration systems for staff and students of Ulm University as well as staff of Ulm University Hospital (source systems), and creates accounts in target systems based on specified authorisation schemes, which grant access to certain services.

The IDM thus allows for an administration of all identities at the University in a way that is largely automated, legally compliant and operates in accordance with the principle of data avoidance and data economy. Only authorised individuals get access to licensed contents/software and identities. Data that are not needed any more are deleted in a timely manner.

Depending on the individual's role or official position they have numerous self-service functions at their disposal (e.g. changing passwords, adding services to their profile). These can be accessed via a web front end.

Login: IDM Self Services

Service features

Back end & architecture

  • Provision of a consistent database of individuals in form of digital identities. The individuals get access to resources of Ulm University (e.g. licensed contents, software, email etc.) dependent on their specific roles (e.g. student, staff).
  • Technical implementation and application of the rules defined by Ulm University, according to which individuals are granted access to certain resources in dependence of their relation to the University.
  • Automated synchronisation of identity data from authorised source systems.
  • Identities which are not contained in the source systems but belong to individuals who are eligible to use University resources can be entered by the service point that is responsible for that particular user group. The assessment of eligibility rests with the service points and must be renewed at regular intervals.
  • Assignment of different roles to the identities. The most common roles are: students, staff of the University, staff of the University Hospital, guests, alumni
  • Provisioning area: automatic, role-dependent provisioning of accounts in target systems including their actualisation and deletion. Target system are, for example, email, Active Directory, LDAP and printing in networks.

Web front end (self-services)

The web front end gives individuals with kiz account direct access to manage their accounts and service subscriptions online. Additional authorisations can be assigned to individuals (e.g. cost centre manager, service point) to give them extended self-service functions.

  • Standard ('My IDM'):
    • view data protocol,
    • overview of upcoming administrative tasks in the IDM,
    • view service subscriptions (mandatory and optional),
    • add or cancel optional services,
    • change password in one or more of the systems that are linked to the IDM.
  • Cost centre managers can use the following self-services for their cost centres:
    • accept or decline requests of other individuals to settle fee-incurring services (subscriptions) through the their cost centre,
    • manage subscriptions,
    • delegate rights to one or more proxies.
  • Staff of the service points can create identities for individuals who are not contained in the source systems but who are eligible to use certain resources (e.g. alumni, contract lecturers), and extend these if necessary.

User groups

Members and affiliates of Ulm University

Service hours

24 x 7 x 365

Application modalities



This service is free of charge. Fees might occur for some of the services that can be booked via the self-service function in the IDM portal.

Communication and Information Centre (kiz)

  • Helpdesk

    Please contact us if you have questions or problems related to the kiz services:
    Mon - Thu: 8 a.m. - 6 p.m.
    Fri: 8 a.m. - 4 p.m.
    Tel: +49 (0) 731 / 50 - 30000
    (University intern: 30000)

    Support Portal

  • Service Points

    Service Points are locations where you can visit us personally.


  • Identity Management

    Using self-service functions of the Identity Management System (IDM): Administer permissions, subscribe to services, change passwords.

    IDM Self Services

  • Literature Search

  • kiz from A to Z

    With about 400 keywords you will get direct access to our services. If something isn't listed, please contact our Internet Editorial Office.

    A-Z List

more about:Identity Management