• Votes

    1

    As a IG Reviewer, I want a way to communicate to the Review Owner that ...

    Integration with MS Outlook's "Out of Office" message may be an option. When the review is deployed and email is sent to the Reviewer. If the Reviewer has an "Out of ...

  • Votes

    8

    Check on permissions in other technical roles on revoke of technical ...

    Currently IGA does not check other technical role contents on revoke. When you have two technical roles with (partly) overlapping permissions (which can happen with some ...

  • Votes

    7

    Ability to automatically assign additional (conditional) permissions

    A lot of applications have a structure like this: - Application account - Certain permission right - Certain default permissions that every user needs when they have a ...

  • Votes

    8

    Connector certificates in trust store

    Currently the certificates of applications need to be manually imported via the GUI. For our current customer we have multiple sort of "virtual" applications in AD and ...

  • Votes

    1

    Configupdate - add sanity checks for URL:s

    It would be nice if configupdate would do a sanity check on the URL:s entered so that they are well-formed, syntactically correct and maybe even throw in a DNS name check ...

  • Votes

    8

    Searchable, sortable and tabbed display of approval items (my ...

    As a user I want to be able to search in my approvals, sort them and have the ability to show more approvals on a page (like the default tabbed display options in for ...

  • Planned

    1

    Hold off on sending email notifications until audit is available

    With audit startup, there is a race where emails go out while the audit is still generating; on large audits, the audit generation can take quite a while, and so the ...

  • Planned

    11

    Fulfillment notification to end user and others

    As a user I want to be notified when a requested permission is actually fulfilled by the system. There are use cases in which a service desk or manager requests ...

  • Planned

    5

    Permissions bulk de-select in permissions search modal window

    Permissions search modal window has good "expression builder" you can filter permissions in different way and can do bulk selection. It would be great if in the future ...

  • Votes

    1

    Granular Application Risk Evaluation

    IG 3.5 has only a single set of rules to determine application risk. There is, for instance, only a single configuration item for "number of permissions". However, ...

  • Votes

    1

    Business Role Analysis

    Enhancements to existing analysis capabilities: 1. find business roles and permissions having relationship numbers exceeding a certain threshold - separately for child- ...

  • Votes

    3

    Business Role Mining

    Large environments (tested with 80.000 users and > 200.000 permissions) require that mining can be started for smaller portions of data. Tech Role Mining already provides ...

  • Planned

    2

    Data Policies

    There is currently no data policy that can detect attribute changes. User Access Reviews are currently not selectable for the microcertification action but this would ...

  • Votes

    1

    Business Role Management

    The approval processes for Business Role Management need more than a single approver (ran into this requirement more than once !) and appropriate escalation options. ...

  • Planned

    2

    Business Role Mining/ Results

    There should be a search/ filter function to find a certain result to make it a candidate. Sample: directed Business Role Mining for Department attribute created 28x15 ...

  • Planned

    1

    Business Role/ Authorization Tab

    There should be multi-selection and multi-setting possible for the permission options (optional/ mandatory and automatic/ not automatic). Sample: role mining produced > ...

  • Votes

    1

    Review Items, particularly Permissions, need to be able to "wrap" ...

    There are instances, particularly with Application Reviews where there are Permission values greater than 20 characters or so. Currently, Reviewers need to click on it ...

  • Planned

    2

    Review on permissions

    Hello, We need to be able to create a review on a permission (eg Domain admins group imported from AD). Currently if I import AD groups and the Domain admins group ...

  • Votes

    3

    Ability to record delegated (onBehalfOf) permissions and certify them

    Many systems (such as exchange) have delegated permissions. Using MS Exchange as the example the ability to review mailbox and calendar delegate access/permissions is ...

  • Votes

    1

    Can we use external (password, email, etc.) risk scoring as part of ...

    Hi guys, Can we please use a repository (e.g. https://haveibeenpwned.com/Passwords ) to score and measure the risk of the credential landscape over time? Thanks!