security process that provides identity, authentication, and authorization mechanisms for users, computers, and other entities to work with organizational assets such as networks, operating systems, and applications.
Define the attributes that comprise an entity’s identity, such as its purpose, function, security clearance, and more.
These attributes subsequently enable access management systems to make informed decisions about whether to grant or deny an entity access and if granted, decide what the entity is authorized to do.
One goal is Single Sign-On so use dont have to authenticate multiple time for multiple resources