Identity & Access Management (IAM)

The NC Education Cloud Identity and Access Management System (IAM) shall provide every K-12 student, teacher, staff member, parent/guardian, and school community member in North Carolina an account, with a single username and password, that will enable access to cloud-based learning resources. The IAM system will have three major components: a centralized data repository with all user information, a central directory service that provides a master authentication and authorization resource, and federation software that enables Single Sign-On functionality for users.

The data repository will be a centralized collection of all user information from disparate data sources. The centralization of this data creates an opportunity for better reporting capabilities, data analytics generation, and access control management. The central directory service will also bring new options to local school district personnel by providing an automated mechanism for synchronizing global user information from the centralized directory service to local directory services. Finally, the federation software will give the end users a new experience of Single Sign-On. That is, a single username and password that grants access to all his or her relevant cloud services. Overall, the IAM system can bring new options and opportunities to the local school districts. It has the potential to reduce support costs through more effective account life-cycle management and create a better, more productive user experience.

IAM Plan

The Identity and Access Management team has released a plan titled Developing an Identity and Access Management Service for NC Education Cloud. This plan provides a comprehensive set of information surrounding the identity management issues in the North Carolina K-12 Education system and a model for developing a statewide Identity and Access Management Service to address these issues. This plan will guide the RFP process for this project, as well as the initial deployment of the system.

To see the plan click here.

IAM Components
IAM Components
How Accounts Are Provisioned
How accounts are provisioned
LEA Integration Possibilities
LEA Integration Method
Project Management

Sammie Carter, Systems Architect
Mark Scheible, IAM Systems Specialist
Steve Thorpe, Systems Analyst

LEA Working Group
Region 1 Region 2
Jeff Smith
Pitt County Schools
Wayne Beasley
Craven County Schools
Region 3  
Corwin Armstrong
Durham County Schools
Ed Chase
Edgecombe County Schools
Mel Cherry
Northampton County Schools
Chris Withrow
Warren County Schools
Walter White
Wake County Schools
Region 4  
Jordan Walsh
Moore County Schools
Region 5  
Lee Cummings
Rockingham County Schools
Mike Ingram
Thomasvillle City Schools
Candace Hosey
Alamance-Burlington County Schools
Betty Weycker
Winston-Salem/Forsyth County Schools
Region 6  
Michael Stocks
Cabarrus County Schools
Susan Manning
Charlotte Mecklenburg Schools
Region 7  
Robert Lane
Mooresville Graded Schools
Marty Sharpe
Catawba County Schools
Region 8 NC Virtual Public School
Michael Thompson
Rutherford County Schools
Chanin Rivenbark
NC School of Science and Math NC Office of Information Technology Services
Paul Menchini
William Haney