Modern-day identity governance and administration (IGA) stems from the user administration and provisioning (UAP) strategies of the last decade. It came to the forefront when businesses were no longer benefiting from traditional directory services.
Multiple account repositories can become an administrative nightmare for businesses when they are not being adequately provisioned. Single sign on (SSO) and password synchronisation do help to alleviate this burden, however, provisioning is required to fully apprehend the proliferation and spread of account repositories.
In the US, SEC-registered corporations were obliged to verify their internal controls over financial reporting when Sarbanes-Oxley Section 404 became official jurisdiction. User access was included in the regular testing of in-scope systems and applications and the vast majority of this access was managed in circumspect account repositories scattered across the enterprise. The reason why identity and access governance (IAG) eventually entered the mainstream was because the technology behind user provisioning tools was simply no longer suitable for the task.
Identity and access governance (IAG) products offered new innovations including the standardisation of the entitlement as a unit of management. Everything associated with accounts were now attributes with user provisioning tools. However, beyond the course grained account level bares the difficult question “who has access to what?” when all you can see are accounts and attributes. This is where access governance broke through, revealing the entitlements that represent the privileges that users actually possess. User provisioning allowed identities to be tied to accounts and coordinated coarse-grained account life cycles with global identity life cycles.
Businesses are now generally looking towards a unified approach for the management of user access across multiple account repositories, rather than opting for separate products for provisioning and access governance. IAG solution providers, many of which you can meet personally at our bi-annualconference, will work closely with their new clients on a case-by-case basis to create a strategy that consolidates the individual IAG needs of their business into one cohesive strategy.
Join Whitehall Media’s prestigious IDM Europe conference on 17 September 2015 at the Movenpick Hotel in Amsterdam to learn more about the latest tools and technologies in the Identity and Access Management (IAM) space. For a full conference agenda and to register your place to attend, visit: www.whitehallmedia.co.uk/idmeurope/registration.
Author: Dan Myers