IDMS/ActivID CMS System Architecture

The following figure illustrates the detail of components involved in the processes between IDMS An Identity Management System (IDMS) is a system that manages and protects the identity information of PIV card applicants. The IDMS generally falls within the IDPRS domain. and ActivID CMS.

IDMS and ActivID CMS Component Processes

PIV Enrollment Plug-In

The PIV Personal Identity Verification (technical standard of "HSPD-12") enrollment plug-in An enrollment plug-in is involved every time a user attribute is set or retrieved by ActivID CMS. This makes it possible to map user attributes to repositories other than ActivID CMS’ standard LDAP (for example, such as IDMS, databases, or XML files). is the ActivID CMS component that processes Card Production Requests submitted by the Identity Proofing and Registration System (IDPRS). It performs the following tasks:

ActivID CMS is delivered with a reference PIV enrollment plug-in that can be customized to meet specific deployment needs, such as providing additional check on the CPR (check against list of approved sponsors/registrars, check of certificate attributes, etc.) or storing the CPR attributes in a different repository.

PIV Static Data Plug-In

The PIV Static Data plug-in is used internally in ActivID CMS to personalize PIV user data (CHUID Card Holder Unique Identifier and demographic data) on the card.

PIV Notification Plug-In

The PIV notification plug-in is the ActivID CMS component that notifies the IDPRS system of PIV issuance and card lifecycle changes.

ActivID CMS is delivered with a reference notification plug-in that logs relevant events to a file. It is intended that integrators customize the PIV notification plug-in for use with their specific IDPRS system.

PIV Repository (PIV_METADATA Table)

The PIV repository stores the CPR enrollment attributes.