Deployment planning

Edit online

Before you implement a particular Verify Identity Access solution, you must determine the specific security and management capabilities that are required for your network.

The first step in planning the deployment of a Verify Identity Access security environment is to define the security requirements for your computing environment. Defining security requirements means determining the business policies that must apply to users, programs, and data. This definition includes:

Objects to be secured
Actions that are permitted on each object
Users that are permitted to perform the actions

Enforcing a security policy requires an understanding of the flow of access requests through your network topology. In your plan, identify correct roles and locations for firewalls, routers, and subnets. Deploying a Verify Identity Access security environment also requires identifying the optimal points within the network that evaluates user access requests, and grants or denies the requested access.

Implementation of a security policy requires understanding the number of users, quantity of data, and throughput that your network must accommodate. You must evaluate performance characteristics, scalability, and the need for failover capabilities.

After you have an understanding of the features that you want to deploy, you can decide which Verify Identity Access systems you need in your environment.

For useful planning documentation, including actual business scenarios, see supplemental product information at the following websites:

http://www.ibm.com/redbooks/

http://www.ibm.com/software/sysmgmt/products/support/Field_Guides.html