A large pension provider

• We were able to switch off the old and malfunctioning IAM system
• A working multi-tenant solution. Pension funds that are constantly being added are added as additional tenants
• There are fewer helpdesk calls for accounts that were not created (on time).

What was the project at this pension provider?

We implemented an IAM solution for a pension provider to support the joiner, mover and leaver processes for multiple tenants (pension funds). This replaces the existing BHold solution. The BHold implementation had been unsupported for some time and resulted in significant administrative workloads, partly due to the inability to support multi-tenancy. Furthermore, the product was unstable and did not support the pension provider’s processes. We deployed Microsoft Identity Manager to support the Identity & Access Management processes.

What were the challenges in implementing Trusted-ID solutions?
Providing a customized solution. The pension provider’s policy is that customized solutions are not permitted, as these solutions are maintenance-intensive. We were able to implement the IAM solution without any customization.

Providing a multi-tenant solution. The pension provider manages multiple pension funds. Employees working for one pension fund are not permitted to access the data of another. Within the capabilities of MIM, we have created a multi-tenant environment that meets this important requirement.

What are the results?
A working IAM solution to support the joiner, mover and leaver processes without customization;

Link to AFAS Profit (via an HRM adapter) for retrieving source data

Performing a plausibility check to verify changes from AFAS Profit before submitting them to IAM

Active Directory integration for managing the lifecycles of accounts, groups, and their memberships.