Term · 25. Access Control — Additional Terms
Subject Centric Implementation
Definition
In midPoint, a **subject centric implementation** is a self-service configuration approach where access request, approval, and provisioning processes are modeled and executed primarily from the perspective of the *subject* (end user or identity) rather than from the perspective of target applications or entitlements. It focuses on how an individual user initiates, views, and manages their own access (e.g., via self-service requests, shopping cart, or access review UI), with system workflows, policies, and connectors organized around the user as the central object. This term is not a formal IAM standard term and is used in practice to distinguish user-driven, self-service oriented setups from resource- or role-centric implementation styles in midPoint projects.
Related terms
-
Active Directory (AD)
Microsoft's enterprise directory service (since Windows 2000 Server) — central repository for user accounts, computer ac …
-
OpenID IPSIE (Interoperability Profile for Secure Identity in the Enterprise) (IPSIE)
OpenID Foundation Interoperability Profile for Secure Identity in the Enterprise (launched October 2024) — working group …
-
Subject
In information security and identity management, a subject is an entity (such as a user, process, service, device, or ap …
-
Access Management (AM)
Discipline of granting and enforcing access to resources after identity has been established. Encompasses authentication …
-
Access Object
Access Object — a unit of an information resource for which access is regulated by access control rules. May be a file, …
-
Access Subject
Access Subject — a person or process whose actions are regulated by access control rules to information system objects. …