a
Core Identity – single entity per human or IoT
Person — core identity can be the owner of other person objects
OrgRoIe — Business Role always assigned in conjunction with an Organizational Location
OrgZone — Organizational Location / Business Context always assigned in conjunction with a Business Role
Polyarchical RBAC — Business Roles and Locations are both hierarchical trees. People are assigned to one or more Business Roles each for a specific Location/Context. This polyarchy dramatically reduces the number of roles and eliminates role bloat
Company — people belong to companies via their Business Role and Location assignments
Personas — person core identity can be linked to multiple sub-person objects which are the professional identities — i.e. have the business information attached
...
If the account is the HR record for a human being
If ….the user will login to use any of the EmpowerID applications or user interfaces
If the account requires access to perform self-service password reset
If you would like to shop for access in the IT Shop for the Account
If you would like to assign EmpowerID roles to the account so it receives policy-controlled access
If the account will be used to authenticate to the EmpowerID API
...