...
Any access assignments, ownership assignments, organizational and job-specific attributes (e.g., department, line manager) can be set on the person only. During the login process, users can use only the person’s credential to log in as core identity does not have its own credentials.
Managing Resource Responsibility
In addition to the relationship where a Person owns an Account, EmpowerID supports assigning and tracking responsible parties for key objects like accounts, groups, computers, management roles, locations, and shared credentials. This responsibility relationship differs from that of a Person owning an account. An account owned by a Person represents that person and serves as their personal account. Responsible parties are assigned to signify who is responsible for an IT object from a security and audit perspective.
...