Specifications include, but are not limited to: •The solution architecture must capable of servicing multiple Active Directory (AD) forests and/or domains•The system must be capable of synchronizing account information between Oracle PeopleSoft (PS), the student information system (Banner), and AD creating a centralized account for all users regardless of AD forest or domain •The system must be capable of managing entire user lifecycle for all users across AD forests and domains regardless of the source of record•The system must provide a relatively easy-to-use workflow engine capable of designing user provisioning/deprovision activities, data synchronization between all connected systems, entitlement/role-based access controls, application/system access request notifications, escalations procedures for approvals, connected system health check information, notification of out-of-sync users, as well as any other standard identity management/governance activities deemed appropriate•The system must be able to securely synchronize user passwords across all systems from a custom web page•The system must be able to provide SSO functionality for all users regardless of AD forest or domain•The system must be able to provide MFA for all users regardless of AD forest or domain•All customer-facing web pages must be customizable and University brandable•The system architecture must be reliable and fault tolerant•The system must be highly scalable and modular•System performance must be predictable and introduce minimal latency•The system should provide centralized management, ease of configuration, and support for open integrations
