...
In order to perform these capabilities, EmpowerID periodically inventories “Protected Resources”1 from the systems a customer desires to manage. The process of synchronizing accounts and supporting data to the Identity Warehouse of an IAM system is often referred to as Reconciliation but more commonly referred to as inventory in EmpowerID terminology.
Protected Resources are defined as “A system, a process, a service, an information object, or even a physical location that is subject to access control as defined by the owner of the resource and by other stakeholders, such as a business process owner or Risk manager.” EmpowerID is capable of inventorying and managing a wide variety of different types of protected resources. In order to configure which systems you wish to inventory and manage, on what schedule, and to keep track of in which system a protected resource exists, EmpowerID maintains a table named “ResourceSystems”. The Resource System Type is the definition of the connector for inventorying data from an external system. This differs from Security Boundary Types, which will be discussed later, which are the connector definition for Create, Update, Delete, and the attribute schema of the native objects directly managed in an external system.
...