The authorization review is the process to verify that the entitlements are authorized in IDM every time reconciliation occurs.

Use Case

Use Case

Authorization Review
Brief DescriptionAuthorization Review is the process to verify that accounts and entitlements are properly authorized in IDM when reconciliation occurs

Actors

  • IDM

Trigger Events

  • The scheduled job is run

Preconditions

Reconciliation on accounts is scheduled

Post-Conditions

Success

  • Reconciliation process performed

Fail

  • Reconciliation process unable to perform
Basic Flow
  • IDM performs reconciliation on the accounts and entitlements
  • IDM identifies whether the account is authorized or not to have a particular entitlement and role
  • If an account is identified as not authorized, the following actions may follow: 
    • Ignore - Hereupon selection user does not generate audit and violation report 
    • Revoke - Hereupon selection user generate audit and violation report and revoke access
    • Accept  - Hereupon selection user does not generate audit and violation report 
  • Audit and violation reports thus are generated as a result of the action taken on the reconciliation review