Conduct periodic and ad-hoc reviews
NetIQ Identity Governance ensures initiatives stay on schedule with automatic system reminders to business reviewers and progress updates including issue escalation for administrators.
Define controls to detect and handle violations and exceptions
Identity Governance allows you to define SOD controls to prevent or mitigate conflicting entitlement assignments and specify time constraints on role and permission assignments to manage temporary access rights. It also defines, detects, and properly handles orphaned account, systems, and shared accounts.
Technical and business role mining
Identity Governance can perform analysis of entitlements across your organization to gain insight into the optimal roles which should be implemented to support your business requirements.
Decision support and ‘what if’ analysis
Guidance can be provided to approvers about abnormal requests, risk factors, and the percentage of users who have the same access. To help administrators avoid costly mistakes, Identity Governance can determine the impact before activating, modifying, or deactivating a role.
Collect and review entitlement data across the enterprise
Identity Governance collects system and application data from on-premises, hybrid, and cloud systems using a wide range of access protocols so you can conduct enterprise-wide user access reviews.
Business role and attribute authorization model
Build business models for access authorization based on roles or attributes. A focus on exceptions, rather than all entitlements, significantly reduces the scope and duration of access certifications, access request, and approval processes.
Intuitive business user interfaces
Identity Governance simplifies business critical information so that it makes intuitive sense to business users conducting access certifications. The simple user-interface encourages participation without requiring detailed training.
Provide access information with context
Make it easy for business managers responding to certification reviews or access requests by providing them with additional decision support and guidance. Key metrics and context will be provided on screen explaining whether the entitlement is within the norms compared to similar users.
Conduct reviews prioritized by risk scoring
Identity Governance allows you to design risk-focused access recertification campaigns based on specific users, groups, entitlements, attributes, and applications. Risk scoring highlights areas of concern, providing focus where most needed.
Closed-loop access revocation
Identity Governance integrates with NetIQ Identity Manager to deliver seamless, automated access revocation. Easily push and pull information to and from the Identity Vault. For applications not managed by Identity Manager, Identity Governance tracks manual fulfillment via service desk integration (Remedy or ServiceNow), or via email interaction with administrators.
Faster time to implementation
Identity Governance has been built from the ground up to simplify the overall compliance and governance process. Organizations can get their compliance campaigns into production in hours instead of weeks or even months with other solutions.
Better decisions based on visibility
Identity governance comes out of the box with over 30 reports and the ability to customize and create your own. The reporting capabilities of Identity Governance provide the visibility needed to make sound business decisions based on fact, not fiction.