Definition
Stages an identity goes through from creation to termination — typically Joiner (onboarding), Mover (role change, transfer), Leaver (offboarding, archival). Each stage triggers provisioning/deprovisioning workflows across connected systems. NHI lifecycle differs: create/rotate/decommission tied to workload deployment.
- Application
- MidPoint: Set of identity stages from creation to its deactivation or deletion.
- Standards & regulations
-
- NIST SP 800-63-4 «SP 800-63 Digital Identity Guidelines describes the digital identity models, risk assessment methodology, and processes for selecting assurance levels and digital identity services.»
- NIST SP 800-63B «This document defines technical requirements for each of the three authenticator assurance levels.»
- NIST SP 800-63A «This document describes the common pattern in which an applicant undergoes an identity proofing and enrollment process whereby their identity evidence and attributes are collected and validated.»
- Sources
-
- NIST SP 800-63 Digital Identity Guidelines (NIST) primary source
Related terms
-
Account Management
Account management is the set of administrative and technical processes used to create, modify, disable, and delete user …
-
Cross-System Identity Resolution
Matching identities across systems with different identifier conventions — resolving that an SAP user ID, a Windows AD a …
-
Entity Resolution
Process of matching identity records across disparate systems to determine which refer to the same real-world entity (pe …
-
Identity Management System (IDMS)
An **Identity Management System (IDMS)** is an integrated set of technical and organizational components that create, ma …
-
Identity Provisioning
Identity provisioning is the automated or semi-automated creation, update, and deactivation of digital identities and th …
-
Access Management (AM)
Discipline of granting and enforcing access to resources after identity has been established. Encompasses authentication …