Ever heard of Recertifications? I am talking about
Access Recertifications which happen in organizations to periodically check who is allowed to access what? This process in many organizations goes this way ...
- Collect user database from every Application owner across the organization
- Consolidate the list with respect to managers
- Send the lists to manager to verify if each of those users require the access to the application with whatever access level specified
- Once the manager gives his decision, the users' accesses are either revoked or modified for which again its a lengthy process, as everyone acknowledges
Sailpoint's Identity IQ addresses this issue. The product just like an
Identity Manager provides a unified view of the entire organizational users, with all the data pertinent to Recertifications. Once the
application is configured for all the necessary applications and the user data is in, scheduled Certification Requests can be fired to every manager in the organization. Also the escalations can be handled. The managers can just login to the application and either recertify or revoke or modify user access to every application.
So most of the process is automated now. Don't think its done yet. It also can make SPML calls to any provisioning engine avaialable (not OOB) in the Identity market and thus automatize the complete Recertification process.
Read more about these at
SailpointOne last thing, if I am not wrong these features are available in the
world's renowed ... :-)
