Access Management: Access Management is concerned with storing and verifying the details of what rights and roles a particular individual has within a system. The IdM project will have a somewhat decentralized model for Access Management where some roles/affiliations will be stored centrally but more specific access rights to various systems will be distributed within the systems themselves. For example, a user may be classified as a student within the central IdM application, but their specific access rights to borrow books with the library would be contained within the library system.
Affiliation: In a Dartmouth-specific context, affiliation means the characterization of an individual or entity’s relationship with the institution. A user may have one or many affiliations with Dartmouth, such as student, employee, faculty, alumni, or friend of the institution. These affiliations may exist concurrently, sequentially over a period of time, or as a combination of both.
Identity Management: Identity Management is concerned with storing and verifying the details of an individual’s identity and, in some cases, the associated rights and privileges that users are assigned within systems.
Single-Sign On: Single sign-on as typically defined is the ability for the user to provide their login credentials once and have access to many systems. Single sign-on is not included in the current scope of the IdM project.
