Information Technology

On May 31, the OneIT Operations Team approved the closeout of a project focused on leveraging identity and access-management (IAM) solutions to provide more efficient and supportable campus services through consolidation, standardization, and best practices.

Ten of the original 16 OneIT projects are now complete, and the remainder are on track for completion by the end of the fiscal year. The IAM project encompassed seven sub-projects in the areas of lifecycle management for electronic and physical identities, service-access management, directory services, and ID card and electronic-door-access automations.

The project migrated the College of Dentistry and College of Public Health Active Directory domains to the IOWA Domain (over 2,400 workstations), resulting in migration or retirement of 129 servers. Migration of three College of Engineering external forests to the IOWA Domain will be completed this summer (1,660 workstations), resulting in migration or retirement of 192 servers.

IAM was extended to support UNIX systems, and HawkID and service ID management was simplified and automated. IowaOne Card system infrastructure was enhanced with self-service photo uploading and enablement of more UIHC card types for door access. Integrated self-service identity-management services were created, and a solution for external IDs was developed.

Automated, role-based electronic door access was expanded to three colleges, Information Technology Centers, and University Housing and Dining, saving significant staff time in provisioning cards and improving security. As opportunities such as new construction or remodeling arose, door access-control software was upgraded to leverage a single, modern ID card technology.

Going forward, the UI will continue to expand deployment of automated door-access management.

The project was led by Mike Noel, Brandon Mills, and Jordan O’Konek and managed by Kris Halter and Mike Frangi. Additional accomplishments of the initiative are reported in the OneIT Year in Review.