Introduction to IdentityCenter
IdentityCenter is an enterprise-grade Identity and Access Management (IAM) platform designed to centralize, automate, and secure identity governance across your organization.
What is IdentityCenter?
IdentityCenter connects to your directory services (Active Directory, Entra ID, LDAP) and provides a unified platform for:
- Identity Synchronization - Automatically sync users, groups, and computers from multiple sources
- Access Reviews - Conduct compliance audits and certify user access rights
- Policy Enforcement - Define and enforce compliance policies (SOX, HIPAA, GDPR, etc.)
- Intelligent Insights - AI-powered analytics to identify risks and optimize access
- Natural Language Interface - ChatHub allows queries in plain English
Key Features
Multi-Source Directory Synchronization
Connect to multiple Active Directory forests, Entra ID tenants, and LDAP directories. IdentityCenter creates a unified identity view by matching accounts across sources to real people.
Access Review Campaigns
Create access review campaigns to certify that users have appropriate access. Reviewers can approve, deny, or delegate reviews. Automated remediation removes inappropriate access.
Compliance Policy Engine
Define policies based on compliance frameworks:
- SOX (Sarbanes-Oxley)
- HIPAA
- GDPR
- ISO 27001
- NIST
- PCI-DSS
Person-Centric Identity Model
IdentityCenter uses a person-centric model:
- Identity = A real person in your organization
- Identity Object = An account/object from a directory source
- One identity can have multiple objects (e.g., AD account + Entra ID account)
ChatHub - Natural Language Interface
Query your directory using plain English:
- "Find all users in the IT department"
- "Show me inactive admin accounts"
- "List group members of Domain Admins"
Architecture Overview
┌─────────────────────────────────────────────────────────┐
│ IdentityCenter │
├─────────────────────────────────────────────────────────┤
│ Web Portal (Blazor) │ ChatHub │ REST API │
├─────────────────────────────────────────────────────────┤
│ Sync Engine │ Access Review │ Policy Engine │
├─────────────────────────────────────────────────────────┤
│ Intelligence Hub │ Workflow Engine │ Notifications │
├─────────────────────────────────────────────────────────┤
│ SQL Server Database │
└─────────────────────────────────────────────────────────┘
│ │ │
┌────▼────┐ ┌────▼────┐ ┌────▼────┐
│ AD │ │ Entra ID │ │ LDAP │
└─────────┘ └──────────┘ └─────────┘
System Requirements
Server Requirements
- Windows Server 2019 or later
- .NET 8.0 Runtime
- SQL Server 2019 or later
- 8 GB RAM minimum (16 GB recommended)
- 100 GB disk space
Network Requirements
- LDAP/LDAPS access to directory servers (ports 389/636)
- HTTPS for Entra ID connectivity
- SMTP for email notifications
Browser Support
- Microsoft Edge (Chromium)
- Google Chrome
- Mozilla Firefox
Next Steps
- Installation & Setup - Install and configure IdentityCenter
- Quick Start Guide - Get up and running quickly
- Creating Your First Connection - Connect to your directories