EUM™ lets you define the ground rules for your user management needs, and then let's you put your Enterprise User Management on auto pilot - requiring only minimal intervention even when managing many thousands of users. You start by defining criteria based groups and the permissions that members of these groups will have in your applications. For example, you can define a group as follows: Location = 'USA' and Department = 'Finance'. Next you specify the permissions that members of this group will have in your applications. People who have attributes which match the group's criteria will automatically become members of the group, they will be granted a user account if they don't already have one and will get applications permissions as defined by the group.
The User Lifecycle begins when a user registers online or when EUM™ automatically creates user accounts from your TRM™ (Tracker Total Relationship Management) contacts which fit your criteria based groups. When a user's attributes change, EUM™ automatically updates their group membership, taking them in and out of groups automatically. The user account lifecycle ends when the user is no longer a member of any group, in which case EUM™ can either automatically lock or de-provision the user account.
In addition to automatically creating EUM™ user accounts, the system can also automatically provision and continuously synchronize user accounts, groups and group membership in various backend systems including LDAP directories such as Microsoft Active Directory, E-Mail systems including distribution groups and members, ERP systems and more.
Every contact your business has is a potential user. You enter your contacts into Tracker Total Relationship Management (TRM™ ), or you can setup continuous differential synchronization of your contacts from any of your data sources (i.e. your Human Resource system). You define groups in EUM™ based on any combination of contact attributes (i.e. Division, Department, Job Title, Job Grade, Geographical Location)
and specify group permissions. Once your groups are defined, EUM™ automatically creates Users from your TRM™ contacts and automatically maintains user-group membership. Your users can logon to individual applications directly, and they can also work with all their applications in a single browser page - via the Corporate Central SaaS Portal.
EUM™ assigns globally unique identities to all your internal and external users and delivers a global single logon. In fact, you get a central repository for uniquely identifying every contact you have, user or not.
EUM™ Account Mapping resolves the issues associated with maintaining user IDs separately in your various backend systems by recording all the IDs for the same person from your various systems and providing a globally unique ID for the person.
EUM™ maps the person to all the systems where they appear and then uses the user's globally unique ID to reference the user in any of your systems or data sources.
All this data is available to you when you work with any Corporate Central application, including WAG™ applications that you create, your home grown and 3rd party applications and Social Web logon services.
EUM™ Social Web integration removes barriers to registration and converts website visitors into registered users. With EUM™ Social Web integration you can offer your users to login with their Social Web accounts including their Google,
Facebook, Twitter, Yahoo and PayPal accounts. Depending on your audience, this capability may be very attractive to certain types of users who will be far more likely to use your site when they are not required to register yet another
separate user account. Internally, EUM™ still creates and maintains the Account Mappings for the user which allows you to record their attributes and offer them an automatically generated user account and login. Now they can login
EUM™ gives you all the options to incorporate any application and logon service access model from Enterprise to Cloud to Social Web. You can provide custom registration pages, create user accounts
automatically from various data
sources such as your HR system and use the Social Web Integration capabilities. EUM™ integrates and automates with many popular corporate directories and systems. The EUM™ Directory Synchronization Service provides continuous synchronization to and from EUM™ and many LDAP directories and databases. The service
can access many LDAP directories including Microsoft Active Directory, Microsoft Exchange for automated mailbox provisioning, Lotus Notes, OpenLDAP, X.500 Directories, and many non-LDAP directories and data sources.
Enterprise User Management is often implemented with large scale corporate directory synchronization. Companies have integrated Enterprise User Management with many LDAP compliant directories as well as custom directories. Whatever type of integration need or initiative you have, EUM™ can handle it all.