The Federal Identity, Credential, and Access Management Roadmap, or “FICAM,” provides federal agencies with architecture and implementation guidelines to meet the identity, credential, and access management challenges they face every day. To that end, FICAM introduced the Authoritative Attribute Exchange Service (AAES) capability as an architectural construct that, when implemented, would enable the secure sharing of authoritative identity attributes within an agency. As part of Initiative 5, which seeks to streamline the collection and sharing of digital identity data, an AAES: “…is a technical solution that enables agencies to connect various authoritative data sources and share identity and other attributes within the shared enterprise infrastructure. To support the AAES capability, agencies must establish an enterprise digital identity model, identify authoritative data sources, and streamline the processes used to populate those authoritative sources.”

The RadiantOne Solution: A Federated Identity Service through Model-Driven Virtualization

Only one solution offers out-of-the-box functionality to meet—and exceed—the implementation demands of the AAES. With its federated identity service, the RadiantOne virtualization platform creates a flexible, scalable infrastructure that offers a solid foundation for the FICAM initiative.

With its complete identity service, the RadiantOne virtualization platform creates a flexible, scalable infrastructure that complies with all aspects of the FICAM initiative.

RadiantOne provides all the functions of a complete Authoritative Attribute Exchange Service, including logical service layers to act as both the Authoritative Attribute Manager and the Authoritative Attribute Distributor. A federated identity service overcomes the primary challenges of identity and access management, enabling identity teams to create custom views of data that span enterprise and security systems, and deliver data via different protocols based on the application’s requirements.

Through a virtual abstraction layer, RadiantOne brings together identity information from disparate data silos, delivering a global view of identity while enforcing security at the local level, as close to the sources of service as possible. So each data store manages its own information and maintains control over its identities, and passwords do not leave their stores. With this solution, agencies can securely share credential and identity information throughout the federated infrastructure.

The platform consists of an advanced Virtual Directory Server (VDS), the Identity Correlation and Synchronization Server (ICS), and the Cloud Federation Service (CFS) component, all fine-tuned to give agencies an overarching, federated view of their identities. This complete identity service aggregates and correlates identities across systems—from both ICAM agencies and their contractors—to provide a single authoritative source of digital identity, without the need for custom coding or complex synchronizations.

Read about it: