SAM Role Modeler

The Business Challenge
The benefits of rule and role-based Provisioning are self-evident. Rules and roles put administration on a business process level, make access management more transparent and increase efficiency: Roles represent processes, or are based on organisational structures; the assignment of a user to a role replaces the connections to a multitude of single resources and groups.

Here, the challenge is cost-effectiveness when identifying and defining an individual role model: The role model should – after cleanup – be compatible with existing access rights. At the same time, it must comply with the reference set of business processes.

When the role model is in productive use and role-based administration is in place, roles and their assignments to privileges and users will change over time, according to the organization’s needs. If no clear role life-cycle management process is in place, this may lead to redundancies and non-compliance with corporate policies.
The adoption of the role model to organizational changes or in M&A scenarios is another challenge that companies face.

Our Solution
SAM Role Modeler simplifies the process of role identification and definition by applying pattern-based analytics to existing organisation data and security information from the SAM Jupiter Repository and optionally from other repositories.

SAM Role Modeler

 

 To shorten the time for setting up a role concept, SAM Role Modeler 

  • provides privilege quality management to clean up existing access rights definitions 

  • automatically detects patterns in existing permissions 

  • derives roles and user-role-assignments, and implements them in SAM Jupiter

Moreover, SAM Role Modeler provides important benefits for the ongoing role model review process. In this context, SAM Role Modeler 

  • validates the existing role model and ensures compliance with organizational policies 

  • quickly adopts privileges and roles to business changes

When combining SAM Role Modeler with SAM Jupiter’s unique role-based administration features, customers get the most comprehensive role life-cycle management solution on the market: They can shorten role engineering and role modeling efforts, establish automated provisioning and set up role-driven compliance controls in a single, homogeneous approach.