Identity management, also known as identity and access management, Access Management (IAM) is a framework of policies and technologies to ensure that the right users have the appropriate access to technology resources.
...
We have identified five user cohors at PSIthat we need to identity and authorize:
PSI staff - defined as all employees for either PSI Global, or any of the PSI in-country chapters.
PSI long-term consultants - which are granted psi.org emails and access to its PSI systems.
Health workers - that include those that have a direct relation with PSI, or indirect, that includes those that we server on contractual basis like partner organizations or MOH.
Developer and consultants - engaged by PSI Global or PSI subsidiaries.
FInal users: one day we will give access to Sara and Sam, the fictional PSI client archetypes, to the information that we have about it, and allow them to interact with it.
Cohort | IAM platform, expected start date |
|---|---|
PSI staff | Azure 0365 in use since 2015 |
Health Worker | Keycloak from early 2023 |
Developers & other consultants | Keycloak from mid 2023 |
Sara & Sam | Keycloak from 2024 |
...
User Identity platform | Final Users Health worker and others | Developers |
|---|---|---|
MS Azure 0365 since 2015 | DHIS2 Monday.com Confluence PBI/ Superset? | PBI dev Confluence (required) |
Keycloak (from early 2023) | WFA web app FHIR ONA android Moodle web & android DHIS2 web & android RocketChat (live agents) Open Help Desk platform* Superset usersDHIS2 | OpenHIM hapiFHIR (dev/QA/test) Superset developer RapidPro Moodle config DHIS2 config AWS ? |
...