Federal Statistical Office
With over 300 IT systems, the Federal Statistical Office recognized that to improve efficiency and provide a seamless customer experience it would need to simplify and automate identity management processes. By implementing NetIQ Identity Manager, the Office integrated all of its existing systems, including NetIQ eDirectory. The solution enables automated workflows, significantly streamlining access management processes while centralized control reduces security risks.
“We are the first higher federal authority within the portfolio of the Federal Ministry of the Interior to implement a working identity management solution, and we are already seeing significant productivity gains, both within the IT department and—due to Single Sign-On—across the user community. We would certainly recommend this solution from NetIQ and G+H Netzwerk-Design.”Dirk HochbergerIT Infrastructure Consultant, Federal Statistical Office
About Federal Statistical Office
The Federal Statistical Office is Germany’s leading provider of high-quality statistical information. As a government body, the Office provides objective, independent data to help politicians, economists, organizations and individual citizens develop informed opinions and support decision-making in a democratic free-market society. The Office employs 2,780 people at three locations in Wiesbaden, Bonn and Berlin.
“We have more than 300 important IT systems, which are accessed by 2,780 users from three locations,” said Dirk Hochberger, IT Infrastructure Consultant at the Federal Statistical Office. “Moreover, we have several kinds of users—our own employees and interns, as well as external users to whom we provide various services. Great numbers of user accounts had to be managed separately in each system, which was a laborious process.”
Giving a new employee access to all relevant systems could take three or four days, as accounts needed to be created manually in each system. Moreover, when an employee left the organization, clearing up the systems was sometimes even more time-consuming and a potential risk to security.
The Office decided to deploy an identity management solution that would integrate with its main systems and automate user management processes.
“We realized that we needed a solution that would be able to integrate with a wide range of different technologies—our HR system, Microsoft Active Directory, Microsoft Exchange, eDirectory and several others,” said Hochberger. “We looked at various solutions and Identity Manager offered the best match with our requirements: out-of-the-box integration with most of our systems and a powerful designer toolset for creating user management workflows.”
A combined team from PartnerNet® Platinum Partner G+H Netzwerk-Design and the Office’s internal IT department created a detailed project plan and held workshops to define the requirements for the user management processes. Thanks to this careful preparation, the implementation itself ran smoothly and was completed within just six months. “Our collaboration with the G+H Netzwerk-Design consultants was very good,” said Hochberger. “We definitely benefited from their experience of previous Identity Manager projects, which helped us build the solution in small steps, focusing on the task at hand without losing sight of the overall goals.”
The solution uses eDirectory as a metadirectory for all users, which is connected to all the different systems via Identity Manager. When a new employee is added to the HR system, the details are transmitted to eDirectory and the Identity Manager Roles Based Provisioning Module starts workflows that automatically create user accounts in all relevant systems. Subsequent identity-related events, such as a change of role, name or personal details, or an employee leaving the organization, are managed via similar workflows.
From the users’ perspective, the new solution makes life easier: due to single sign-on for more than 30 applications, there are fewer passwords for users to remember, which makes it easier to implement enhanced security policies. Passwords can be more complex and password change cycles can be shortened.
Meanwhile, from the IT team’s perspective, administrative workload has been reduced significantly. Instead of creating, updating and deleting user accounts in individual systems, the whole process is automated. When adding a user to a system requires specific permission, notifications are automatically sent to the relevant people and they can simply click to approve.
As a result, new employees can gain access to the systems they need within one day—up to 75 percent faster than before. The solution also provides better visibility of user access rights and makes it easy to revoke access when someone leaves the organization, ensuring that information remains accessible only by authorized users.
“When implementing the system we had to review our user-base. We discovered that about 50 percent of our inactive accounts were no longer necessary,” said Hochberger. “The initial and now automated clearing of these accounts ensures that only genuine users can access our systems—providing a higher degree of security.
“We are the first higher federal authority within the portfolio of the Federal Ministry of the Interior to implement a working identity management solution and we are already seeing significant productivity gains...We would certainly recommend this solution from NetIQ and G+H Netzwerk-Design.”
- Gained the ability to grant new employees relevant access 75 percent faster
- Increased security by eliminating 50 percent of inactive user accounts
- Enhanced password security and user experience with single sign-on capability
Welcome, Want to talk to someone? Call our Sales team or request a call and we'll get right back to you.
- Sales: (888) 323-6768
For support information, please visit Technical Support.
Press & Analyst Relations
Phone: (713) 418-5368