In this paper a framework for a model-driven control of identity management systems is presented. An important issue in today's information systems security discussion addresses the effective authorisation of users. With established conceptual modelling languages the assignment of roles to the identity management software is an enormous organisational effort. To decrease administration costs we propose a direct connection between the identity management system and enterprise models which contain the organisational responsibilities. Therefore, we have created the modelling approach E³+WS available for the meta-CASE tool cubetto toolset and the Novell Identity Manager.