Buyer beware: IdM solutions without support for compliance are worthless
I just read an interesting article on M-Tech written by Dave Kearns but unfortunatly while good PR may end up missing a couple of the details about M-Tech’s offering. Like many IdM players M-Tech started it’s entry into the market place with password syncronization and now has begun to broaden it’s appeal by adding managment of identities to their product line. Unfortunatly, in looking over their offering I can’t help but notice that they don’t seem to have a comprehensive logging capability for most companies facing SOX or other compliance requirements is an absolute requirement. I would suggest to anyone that is considering an Identity Managment project that you ensure that the product not only works as advertized but that that it also not introduce new complexities into your envionment that will make things like security or compliance un-achivable.
