Skip to content
This repository has been archived by the owner on Oct 30, 2023. It is now read-only.

Added Detailee Use Case #702

Closed
wants to merge 6 commits into from
Closed

Added Detailee Use Case #702

Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
73f6f1f
Added Detailee Use Case
claytonjbarnette Nov 23, 2022
502bed0
Merge branch 'staging' into 1123-ilm-detailee-update
claytonjbarnette Nov 29, 2022
97792da
Update playbook-ilm.md
claytonjbarnette Nov 30, 2022
f6a8a6f
Merge branch 'staging' into 1123-ilm-detailee-update
claytonjbarnette Nov 30, 2022
21da53c
Merge branch 'staging' into 1123-ilm-detailee-update
idmken Dec 2, 2022
df57c76
Merge branch 'staging' into 1123-ilm-detailee-update
idmken Dec 6, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
7 changes: 5 additions & 2 deletions _playbooks/playbook-ilm.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -30,8 +30,8 @@ subnav:
href: '#appendix-a-policies-standards-and-guidance'
---

Version 1.1
October 11, 2022
Version 1.2
November 30, 2022

The Identity Lifecycle Management Working Group of the Federal Chief Information Security Officer Council ICAM Subcommittee developed this playbook to help federal agencies understand and plan identity lifecycle management initiatives.

Expand All @@ -41,6 +41,7 @@ The Identity Lifecycle Management Working Group of the Federal Chief Information

| Version Number | Date | Change Description |
| :----------: | :-------: | -------- |
| 1.2 | 11/30/22 | Added Detailee Use Case under Step 4 Integrate. |
| 1.1 | 10/11/22 | Move 3rd party federation content to Cloud Identity Playbook federation section. |
| 1.0 | 06/30/22 | Initial Draft. |

Expand Down Expand Up @@ -285,6 +286,8 @@ Make attributes available for authorization decisions. Federation is not only ac

See the [Cloud Identity Playbook Federation section]({{site.baseurl}}/playbooks/cloud/#federation) for more information on federation and using trust frameworks for government, mission partner, or public identity federation.

**Detailee Use Case** - An Agency A employee is detailed to Agency B. How can Agency B use their ILM system for this existing Agency A employee, but short-term Agency B employee. Can Agency A share HR data to do birth-right provisioning in Agency B? I think the corpus of this use case is how Agency B can provision Agency A employee without issuing them an Agency A piv card and an Agency A email.

## Summary

The ILM playbook outlined an identity lifecycle process and four steps to create a master user record and lifecycle process within your agency. ILM is the evolution of an identity from creation to deactivation. There are specific steps within each lifecycle phase of the joiner-mover-leaver process. A master user record is the core of ILM and acts as an aggregation point of identity data for all agency users. A master user record integrated with access management tools provides a foundation for more mature ICAM processes.
Expand Down