eADM
eADM
Breadcrumbs

HK Data - Welfare & Childcare

Integrating eADM Vitec HK Data (Welfare)

This document describes the integration between Identum eADM Vitec HK Data's applications, such as HK Velferd, to automate user account provisioning and access management.

This integration ensures that users are automatically created, updated, or disabled in the Vitec HK Data AD environment based on your organization's policies. There are two main setup scenarios for this integration, depending on whether you are an existing Identum eADM or are using a dedicated eADM managed by Vitec.


Key Features of the Vitec eADM

  • Efficient User Administration: Centralizes and automates access management based on the customer's existing identity infrastructure (such as Entra ID).

  • Improved User Experience: Allows users to log in with their familiar Entra ID accounts for a Single Sign-On (SSO) experience.

  • Smooth Onboarding/Offboarding: New employees gain access quickly, and access is automatically revoked when their employment status changes, reducing risk and administrative time.

  • High Security (Zero Trust): The solution adheres to modern security principles such as "least privilege" and continuous identity verification.

Scenario 1: Existing Identum eADM

This scenario applies to customers who already have an active Identum eADM for managing their organization's identities. In this setup, the Vitec HK Data AD is configured as a target system within your existing eADM .


How It Works

  • Your eADM connects directly to the Vitec HK Data AD.

  • When a user is granted access to a Vitec application (e.g., HK Velferd or HK Oppvekst) within eADM, a user account is automatically created in Vitec's system.

  • eADM the correct permissions to this new account.

  • When a user's access is revoked in eADM e.g., due to termination or a change in employment), the account in Vitec HK Data is automatically disabled or removed.

  • Access can be managed automatically using rule-based logic in eADM manually by your managers or administrators.

Scenario 2: Vitec-Managed eADM

This scenario is for customers who do not have an existing eADM . Vitec HK Data offers a pre-configured eADM as part of its cloud solution.

In this setup, the Vitec-managed eADM acts as a "data bridge" between your organization's source system (such as an HRM system) and the Vitec HK Data environment. Vitec manages the operation, monitoring, and maintenance of the eADM .


How It Works

  • Your primary user source system (e.g., HRM, local AD, or Microsoft Entra ID) is connected to the Vitec-provided eADM .

  • eADM and processes user data from your source.

  • Based on predefined rules, eADM provisions users who require access to Vitec applications into the Vitec HK Data AD.

  • When a user's access is revoked in eADM e.g., due to termination or a change in employment), the account in Vitec HK Data is automatically disabled or removed.

  • All user management is fully automated and handled by Vitec.

Prerequisites and Implementation

To implement this integration, the following prerequisites must be met:

  • Vitec Application: You must be using the Vitec HK Data cloud solution.

  • Identum eADM : A valid agreement for the eADM is required.

    • Scenario 1: You use your existing eADM with Identum.

    • Scenario 2: You must sign an agreement for the eADM with Vitec, which is typically arranged by Vitec in collaboration with Identum.

AI & Search Summary

This article details the integration between Identum eADM Vitec HK Data's Velferd solution. It outlines two setup scenarios for automating user provisioning: one for existing eADM adding Vitec as a target system, and one for new customers using a Vitec-managed eADM . The document also covers key features, benefits, and implementation prerequisites.