0 valutazioniIl 0% ha trovato utile questo documento (0 voti)
110 visualizzazioni6 pagine
Penn Mutual is the nation's second oldest mutual life insurer. The company provides life insurance and annuities through a national network of financial professionals. MIIS 2003 aggregates user profile data from multiple systems and synchronizes it to the organization's centralized directory.
Penn Mutual is the nation's second oldest mutual life insurer. The company provides life insurance and annuities through a national network of financial professionals. MIIS 2003 aggregates user profile data from multiple systems and synchronizes it to the organization's centralized directory.
Copyright:
Attribution Non-Commercial (BY-NC)
Formati disponibili
Scarica in formato DOC, PDF, TXT o leggi online su Scribd
Penn Mutual is the nation's second oldest mutual life insurer. The company provides life insurance and annuities through a national network of financial professionals. MIIS 2003 aggregates user profile data from multiple systems and synchronizes it to the organization's centralized directory.
Copyright:
Attribution Non-Commercial (BY-NC)
Formati disponibili
Scarica in formato DOC, PDF, TXT o leggi online su Scribd
Overview “MIIS 2003 SP1 has worked flawlessly from
Country or Region: United States Industry: Insurance inception to help us simplify identity management throughout our systems.” Customer Profile Jeff Skalicky, Senior Enterprise Infrastructure Architect, Penn Mutual Penn Mutual is the nation’s second oldest mutual life insurer. Founded in 1847, the company provides life insurance and annuities through a The Penn Mutual Life Insurance Company, one of the national network of financial professionals. oldest mutual life insurers in the United States, was using manual processes to manage identity data. This Business Situation Penn Mutual wanted to automate was time consuming and didn’t always ensure that information management processes identities were updated consistently across the com- and provide single sign-on access to multiple systems available through pany’s different information source systems. By its portal, as well as increase portal implementing Microsoft® Identity Integration Server security. (MIIS) 2003 Enterprise Edition Service Pack 1 (SP1), Solution Penn Mutual has automated its identity information Penn Mutual is using Microsoft® Identity Integration Server 2003 tasks. MIIS 2003 SP1 aggregates user profile data from Enterprise Edition Service Pack 1 to multiple systems and synchronizes it to the organiza- automatically aggregate user profile information and synchronize that tion’s centralized directory, which ensures that identity information across multiple source data is up-to-date. As a result of automating these systems. processes, Penn Mutual is reducing the cost of Benefits managing identity information, decreasing help-desk Greater administrative efficiencies Better control of identity costs, and increasing the security of its internal portal information through role-based access control. Cost savings of 75 percent compared with other solutions Situation identities against the security Founded in 1847, the Penn Mutual application. Life Insurance Company is headquartered in Horsham, At Penn Mutual, like in many Pennsylvania, just outside organizations, identity information Philadelphia. It is the second oldest exists in many different data systems, mutual life insurer in the United including human resources, payroll, States, with life insurance and annuity client management, distribution products sold through a national management, and a third-party network of financial professionals. By solution used by external brokers and offering customers sophisticated dealers. The problem with multiple products and easy-to-understand information sources is the duplication consumer materials, Penn Mutual of identity information and the fact provides solid financial options to that different directories can contain meet clients’ immediate and future conflicting identity information about needs. the same person or resource. Penn Mutual had no way to Penn Mutual created an internal synchronize information among the portal, called Producers Place, to different source systems, except provide an efficient way for field through manual processes. Updates representatives to access critical to data in one information system, for business and customer information example, were not automatically online. In addition, field reflected in that same user account in representatives—which include another system. Manually tracking independent and internal agents, field and keeping information current managers, and sales support staff— across all systems was time con- can access brokerage services suming, and there was always the through Hornor, Townsend & Kent, a chance that something was missed. wholly owned subsidiary of Penn This left users unsure whether the Mutual. information that they were viewing was the most recent. Access to data on the company’s secure portal was accomplished Penn Mutual wanted to replace through a client database. Active manual information update processes Server Pages, which were managed with a solution that would aggregate through a homegrown security user profile information across application, provided authentication multiple information source systems. and authorization for the portal. The IT administrators also wanted to Active Directory® service, a simplify information access by giving component of the Microsoft® Windows users single sign-on capabilities and Server™ operating system, provided some level of self-service such as the the repository for user identity ability to change passwords. information and authenticated Achieving these goals would reduce IT staff involvement in common tasks as logon information throughout well as reduce help-desk calls. systems. It is no longer necessary to use multiple systems to change user Solution names or passwords across all The IT group at Penn Mutual systems. evaluated several metadirectory systems before selecting an identity “MIIS 2003 SP1 has worked flawlessly management solution. The group from inception to help us simplify looked at system costs, the ability to identity management throughout our support a variety of identity systems,” states Jeff Skalicky, Senior repositories, and single sign-on Enterprise Infrastructure Architect for functionality, among other features. Penn Mutual. “To enter the Producers Place portal, all the user has to do is Taking into account the fact that the type his or her user name and company’s identity infrastructure was password, and a Web service sends a “Our IT built on Active Directory, Penn Mutual request to Active Directory by way of administrators have selected Microsoft Identity Integration our Web security system.” Server (MIIS) 2003 Enterprise Edition more control of Service Pack 1 (SP1). Part of Microsoft To solve the issues that resulted from identity information Windows Server System™ integrated identity data residing in multiple server software, MIIS 2003 SP1 offers sources, Penn Mutual is using MIIS as now that we are broad interoperability capabilities, a new data store that is an aggregate using MIIS to including integration with a range of of information in these systems. By identity repositories, management combining the data for a specific manage the flow of across multiple source systems, and person or resource, it creates a single data between the ability to automatically detect entry that contains some or all of the updates and share the changes identity information from each connected source across systems. connected data source. systems throughout IT administrators now can manage “Think of MIIS as the bottom of a our enterprise.” user information across both the funnel,” says Greg Driscoll, Assistant Greg Driscoll, Assistant Vice President Active Directory service and Vice President for Technology for Technology Architecture, Penn Lightweight Directory Access Protocol Architecture at Penn Mutual, “with (LDAP) directories. For example, MIIS three or four source systems at the 2003 SP1 draws identity information top and MIIS at the bottom from the company’s different source incorporating all the information. MIIS systems, and then uses that brings all the information together to information to authenticate user represent one data store that access to the Producers Place portal. provides user roles as well as ensures By using MIIS to create a central that records are updated.” identity store, account managers now can synchronize passwords across The aggregated user profile provides multiple systems, providing common IT staff with different views and different data based on the user’s role. A user’s role is defined by a Benefits series of attribute values. MIIS applies Penn Mutual has replaced manual the attribute values to authenticate identity management procedures with users into back-end systems once an automated solution, using they are logged on to the Producers Microsoft Identity Integration Server Place portal, providing access control 2003 Enterprise Edition Service Pack so that only those with appropriate 1 as the company’s core identity roles or privileges can access certain information database. It provides the information or resources. Skalicky functionality to put those using the explains, “If you’re an agent, you’ll Producers Place portal in touch with have access to certain information appropriate, accurate information, and possibly to certain embedded while reducing security risks to the applications. If you’re a field portal related to previous processes. manager, you’ll have access to a Greater Administrative Efficiencies different combination of resources. With the new identity management This level of control gives us better solution, IT administrators can system security.” automatically aggregate user profiles and synchronize that information Before implementing MIIS, the across the company’s multiple infor- account creation group would be mation source systems. “Automating involved, hands on, throughout all this previously manual process aspects of setting up a user account reduces administrative involvement on the portal. After receiving a while maintaining the consistency and request for a new user account, and integrity of data throughout the before a user could ever log on, this enterprise,” says Driscoll. “Help-desk group would have to review and staff can work more efficiently, and validate all information, and then set they no longer have to access up the account. Now, MIIS evaluates multiple systems to manage profile or the account application against preset identity information.” access privileges to automatically accept or deny a request based on Better Control of Identity Information the user’s role. IT administrators benefit further from the ability to resolve conflicts in In addition, MIIS compiles a user’s identity information automatically and data into an LDAP directory. When the establish rules to determine which user self-registers, MIIS synchronizes data source directory contains the that identity information from the authoritative value for a specific other source systems. This creates attribute. MIIS then automatically the ability for that individual to gain updates all the other data sources entry into the desired area of the with that authoritative value. “Our IT portal—without requiring the administrators have more control of involvement of the account team. identity information now that we are using MIIS to manage the flow of data providing robust trust management, between connected source systems reusability, and reporting tools, which throughout our enterprise,” says allows administrators to control Driscoll. exactly what data is shared and with whom. “MIIS helps us make the portal Cost Savings of 75 Percent Compared more secure because we have all the with Other Solutions data in aggregate now. We can rely Because Penn Mutual was already on that data to verify the identity of running Microsoft Windows Server someone who is registering, and then 2003, the MIIS solution easily gained provide or deny access accordingly,” approval. As Driscoll explains, “When Driscoll concludes. compared with other metadirectory products in the marketplace, this solution cost approximately 75 percent less. Furthermore, it offers “The easy-to-use advanced integration with Active self-registration Directory, which we are using to provide a single sign-on Web interface capabilities enabled as well as to give users the ability to by MIIS are set and reset passwords across multiple systems.” improving the user experience, and, by Faster Account Setup, 30 Percent Cut in Help-Desk Password Resets leveraging Active Tasks associated with the initial setup Directory, help-desk of user accounts presented one of the greatest costs for the Penn Mutual involvement in help desk—to say nothing of the password resets has frustrations involved in setting up user accounts because they often declined by as much required multiple contacts. “The easy- as 30 percent.” to-use self-registration capabilities enabled by MIIS are improving the Jeff Skalicky, Senior Enterprise user experience, and, by leveraging Active Directory, help-desk involve- ment in password resets has declined by as much as 30 percent,” says Skalicky.
Increased Portal Security Through
Access Control MIIS 2003 SP1 is helping Penn Mutual gain better portal security by For More Information Microsoft Windows Server For more information about System Microsoft products and services, call Microsoft Windows Server System is a the Microsoft Sales Information line of integrated and manageable Center at (800) 426-9400. In server software designed to reduce Canada, call the Microsoft Canada the complexity and cost of IT. Information Centre at (877) 568- Windows Server System enables you 2495. Customers who are deaf or to spend less time and budget on hard-of-hearing can reach Microsoft managing your systems so that you text telephone (TTY/TDD) services can focus your resources on other at (800) 892-5234 in the United priorities for you and your business. States or (905) 568-9641 in Canada. Outside the 50 United States and For more information about Windows Canada, please contact your local Server System, go to: Microsoft subsidiary. To access www.microsoft.com/windowsserversy information using the World Wide stem Web, go to: www.microsoft.com
For more information about the
Penn Mutual Life Insurance Company, call (215) 956-8000 or visit the Web site at: www.pennmutual.com