...
- Fewer Accounts
- Password Management
- Better User Experience
- Single Sign On (SSO)
- Easier Application On-boarding – simple to extend once implemented
- Better security and access to an increasing number of Cloud Services (use case)
- Licensing costs controlled - More accurate count of actual users (via federated access)
- Security
- Better control over user Credentials (username/password)
- Active/Inactive accounts
- Management of users’ privacy or information exchanged
- Fewer Firewall “holes” needed (opened for vendor access to LDAP data)
- Passwords not transmitted to vendor/application sites to authenticate
- Easier to enable a user and grant entitlements (theoretically in one place)
- Much easier to disable a User user (one place, rather than searching for accounts)
- User data is neither stored at nor transported to vendor sites(attributes) made available to resource providers is controlled by the institution
- Better control over user Credentials (username/password)
- Consortium purchasing (licensing)
- SLC/SLI (Shared Learning Collaborative/Shared Learning Infrastructure)
...