Identity Center

Enterprise identity & access — providers, roles, sessions, provisioning, and audit. The control plane for production deployment.

Microsoft Entra ID

Demo datasetStore: Demo Data

Illustrative pilot dataset — figures model a representative enterprise deployment.

2 metrics live in this mode Switch to live data

Active Provider

Microsoft Entra ID

Single sign-on source

Authentication

Healthy

Audit chain integrity

Active Sessions

2 expiring soon · 80% MFA

Provisioning

1 pending

3 completed (SCIM, mocked)

Last Sync

3d ago

Directory synchronization

Connected Providers

Microsoft Entra ID

OIDC

Connected

SSOSCIMGroup SyncMFA

Active providerSynced 3d ago

Okta

OIDC

Configured

SSOSCIMGroup SyncMFA

StandbySynced 3d ago

Generic OpenID Connect

OIDC

Pending

SSOSCIMGroup SyncMFA

StandbyNever synced

Generic SAML 2.0

SAML

Error

SSOSCIMGroup SyncMFA

StandbyNever synced

Role Management

Reusable RBAC definitions — features gate on permissions, not hardcoded role checks.

Platform Administrator

Full control over identity, access, and platform configuration.

All permissions

Governance Administrator

Manages governance, policies, pilots, and role assignments.

Assign rolesManage policiesManage pilotsApprove decisionsReview vendorsReview procurementExport evidenceView reportsView audit log

Compliance Officer

Owns compliance posture, evidence, and policy enforcement.

Manage policiesApprove decisionsExport evidenceReview vendorsView reportsView audit log

Risk Officer

Reviews risk across decisions and vendors.

Approve decisionsReview vendorsView reportsView audit log

Security Reviewer

Reviews security posture and audit evidence.

Review vendorsView audit logView reports

Executive Sponsor

Sponsors pilots and reviews executive outcomes.

Manage pilotsView reports

Procurement Reviewer

Reviews procurement readiness and packages.

Review procurementView reports

Auditor

Read-only access to audit evidence and reports.

View audit logView reportsExport evidence

Read-Only Executive

View-only access to executive reports.

View reports

Group Mapping

Identity-provider groups mapped to platform roles. Synchronization is mocked.

entraAI Governance Team

Governance Administrator 4 users

entraCompliance

Compliance Officer 6 users

entraSecurity Reviewers

Security Reviewer 3 users

entraProcurement

Procurement Reviewer 2 users

oktaExecutives

Read-Only Executive 8 users

Session Management

Active sessions, authentication provider, MFA, and expiry.

User	Role	Provider	MFA	Authenticated	Status
Jermaine Merritt 203.0.113.x	Platform Administrator	entra	MFA enforced	3d ago	Expires in 7h
Sarah Mitchell 198.51.100.x	Executive Sponsor	entra	MFA satisfied	3d ago	Expires in 6h
David Okafor 203.0.113.x	Governance Administrator	entra	MFA enforced	3d ago	Expires in 22m
Marcus Hale 192.0.2.x	Compliance Officer	okta	MFA satisfied	3d ago	Expired
Priya Nair 198.51.100.x	Security Reviewer	entra	No MFA	3d ago	Expires in 8m

SCIM Provisioning

User lifecycle and group synchronization. Interface-ready; a production SCIM connector drops in without code changes.

AI Governance Team

Synced 4 members → governance_admin.

completed3d ago

a.rivera@meridian.com

Provisioned with Compliance group.

completed3d ago

t.former@meridian.com

Offboarded; access revoked.

completed3d ago

Security Reviewers

Awaiting next sync cycle.

pending3d ago

Mocked synchronization. The SCIM connector implements the production contract; swap the mock for a live connector to enable real provisioning.

Identity Audit Events

Logins, role changes, and provisioning — in the same hash-chained evidence log.

Chain intact

logoutSigned out.

Lena Petrov · 3d ago

0x79bf4c…2ceb

session_expiredSession expired after inactivity.

Marcus Hale · 3d ago

0xaf28f3…f87e

loginLogin via Entra ID (MFA satisfied).

Sarah Mitchell · 3d ago

0x7c860f…4859

loginLogin via Entra ID (MFA enforced).

Jermaine Merritt · 3d ago

0xf3109a…df37

role_assignedAssigned Governance Administrator to David Okafor.

Jermaine Merritt · 3d ago

0x5f1521…ac2c

provisionedProvisioned a.rivera@meridian.com via SCIM.

system:scim · 3d ago

0x9f9a7c…6ecc

group_syncedSynced Entra group 'AI Governance Team' → Governance Administrator (4 users).

system:scim · 3d ago

0x25799d…b65f

provider_configuredConfigured Microsoft Entra ID (OIDC) as the active provider.

Jermaine Merritt · 4d ago

0x916532…712a

Identity Reports

Configuration and access-review documents — reuse the shared report shell.

Role Management

Reusable RBAC definitions — features gate on permissions, not hardcoded role checks.

Platform Administrator

Full control over identity, access, and platform configuration.

All permissions

Governance Administrator

Manages governance, policies, pilots, and role assignments.

Assign rolesManage policiesManage pilotsApprove decisionsReview vendorsReview procurementExport evidenceView reportsView audit log

Compliance Officer

Owns compliance posture, evidence, and policy enforcement.

Manage policiesApprove decisionsExport evidenceReview vendorsView reportsView audit log

Risk Officer

Reviews risk across decisions and vendors.

Approve decisionsReview vendorsView reportsView audit log

Security Reviewer

Reviews security posture and audit evidence.

Review vendorsView audit logView reports

Executive Sponsor

Sponsors pilots and reviews executive outcomes.

Manage pilotsView reports

Procurement Reviewer

Reviews procurement readiness and packages.

Review procurementView reports

Auditor

Read-only access to audit evidence and reports.

View audit logView reportsExport evidence

Read-Only Executive

View-only access to executive reports.

View reports

Group Mapping

Identity-provider groups mapped to platform roles. Synchronization is mocked.

entraAI Governance Team

Governance Administrator 4 users

entraCompliance

Compliance Officer 6 users

entraSecurity Reviewers

Security Reviewer 3 users

entraProcurement

Procurement Reviewer 2 users

oktaExecutives

Read-Only Executive 8 users

Session Management

Active sessions, authentication provider, MFA, and expiry.

User	Role	Provider	MFA	Authenticated	Status
Jermaine Merritt 203.0.113.x	Platform Administrator	entra	MFA enforced	3d ago	Expires in 7h
Sarah Mitchell 198.51.100.x	Executive Sponsor	entra	MFA satisfied	3d ago	Expires in 6h
David Okafor 203.0.113.x	Governance Administrator	entra	MFA enforced	3d ago	Expires in 22m
Marcus Hale 192.0.2.x	Compliance Officer	okta	MFA satisfied	3d ago	Expired
Priya Nair 198.51.100.x	Security Reviewer	entra	No MFA	3d ago	Expires in 8m

SCIM Provisioning

User lifecycle and group synchronization. Interface-ready; a production SCIM connector drops in without code changes.

AI Governance Team

Synced 4 members → governance_admin.

completed3d ago

a.rivera@meridian.com

Provisioned with Compliance group.

completed3d ago

t.former@meridian.com

Offboarded; access revoked.

completed3d ago

Security Reviewers

Awaiting next sync cycle.

pending3d ago

Mocked synchronization. The SCIM connector implements the production contract; swap the mock for a live connector to enable real provisioning.

Identity Audit Events

Logins, role changes, and provisioning — in the same hash-chained evidence log.

Chain intact

logoutSigned out.

Lena Petrov · 3d ago

0x79bf4c…2ceb

session_expiredSession expired after inactivity.

Marcus Hale · 3d ago

0xaf28f3…f87e

loginLogin via Entra ID (MFA satisfied).

Sarah Mitchell · 3d ago

0x7c860f…4859

loginLogin via Entra ID (MFA enforced).

Jermaine Merritt · 3d ago

0xf3109a…df37

role_assignedAssigned Governance Administrator to David Okafor.

Jermaine Merritt · 3d ago

0x5f1521…ac2c

provisionedProvisioned a.rivera@meridian.com via SCIM.

system:scim · 3d ago

0x9f9a7c…6ecc

group_syncedSynced Entra group 'AI Governance Team' → Governance Administrator (4 users).

system:scim · 3d ago

0x25799d…b65f

provider_configuredConfigured Microsoft Entra ID (OIDC) as the active provider.

Jermaine Merritt · 4d ago

0x916532…712a