Federated Identity Checklist


I'm putting together a checklist of things to do to help federation succeed for the feature I'm writing for InfoWorld. Here's my list so far. Any other's that ought to be in there based on your experience?

  • Find win-win situations where both parties benefit from the federation
  • Start with internal projects
  • Find an experienced partner for your first external federation
  • Create a center of excellence in the CIO's office
  • Establish a federated identity council to get input from business users
  • Educate the legal department about federation and develop an in-house legal expert
  • Pay attention to privacy
  • Make sure your policy creation process is up to speed and use it to build a set of identity policies
  • Create an interoperability framework that outlines what standards and products to use