Identity Mangagement

Service Category: Account & Access

The identity management system (IDM) forms the basic infrastructure for managing the authorisations that people need to access what are usually IT-based resources of the university. The IDM obtains its information mainly automatically from the administration systems for students and employees of the University of Ulm and the employees of the University Hospital Ulm (source systems) and creates accounts in target systems based on predefined authorisation schemes which enable access to services.

The IDM thus realises a largely automated, legally compliant administration of the university's identities that operates according to the principle of data economy. Only authorised persons have access to licensed content/software and identities, and data that is no longer required is promptly deleted.

Via a web front-end, numerous self-service functions can be used depending on the individual role or service activity (e.g. changing passwords, booking services for use).

Login: IDM Self Services

Performance features

Backend & Architecture

  • Provision of a consistent database of people in the form of digital identities. Depending on their roles (e.g. student, employee),
    persons are allowed to use resources of the University of Ulm (e.g. access to licensed content, software, e-mail, etc.).
  • Technical implementation and enforcement of the rules laid down by the University of Ulm, according to which persons may have access to the resources depending on their relationship with the university.
  • Automated reconciliation of identity data from authorised source systems.
  • Identities that are not listed in the source systems, but which are entitled to use resources, can be entered via contact points responsible for the respective user group. The contact points are responsible for verifying eligibility and must be renewed at regular intervals.
  • Assignment of different roles to the identities. Prominent roles are: students, university staff, clinic staff, guests, alumni
  • Provisioning-Area: Automatic, role-dependent provisioning of accounts in target systems including their updating and deletion. Target systems are for example e-mail, Active Directory, LDAP and printing in the network.

Web-Frontend (Self Services)

The web frontend allows all persons who have a kiz account to access the administration of their accounts and service subscriptions. Persons can be assigned additional authorisations (e.g. cost centre manager, contact point) which enable them to perform advanced self service functions.

  • Standard („Mein IDM“):
    • Display data mirror
    • Overview of upcoming administrative tasks within the IDM
    • Show subscribed services (mandatory and optional)
    • Add and cancel optional services
    • Change the password in one or more of the systems connected to the IDM
  • Cost centre managers can use the following self services for their own cost centres:
    • Accept or reject applications by other persons for the billing of services subject to charges via the responsible cost centres (subscriptions)
    • Edit subscriptions
    • Delegate rights to one or more deputies
  • Employees of the contact points have the possibility to create identities of persons who are not available in the source systems but who are authorised to use certain resources (e.g. alumni, lecturers) and to extend them if necessary.

User groups

Members and affiliates of the University of Ulm

Service hours

24 x 7 x 365

Application modalities

N/A

Fee / charge

No fees or charges will be charged for the service. If services are added via the self-service function of the IDM portal, costs may arise for the use of these services.

Communication and Information Centre (kiz)

  • Helpdesk

    Please contact us if you have questions or problems related to the kiz services:

    Office hours
    Mon - Thu 9 - 12 h and 13 - 15:30 h
    Fri 9 - 12 h

    Phone
    +49 (0) 731 / 50 - 30000

    Telefax
    +49 (0) 731 / 50 - 1230000

    Order a Callback
    helpdesk(at)uni-ulm.de
    Support Portal
    [more]

  • Service Points

    Service Points are locations where you can visit us personally.

    [more]

  • Identity Management

    Using self-service functions of the Identity Management System (IDM): Administer permissions, subscribe to services, change passwords.

    IDM Self Services
    [more]

  • Literature Search

  • kiz from A to Z

    With about 400 keywords you will get direct access to our services. If something isn't listed, please contact our Internet Editorial Office.

    A-Z List