• Votes

    4

    Collection / publication triggered by scheduled review

    As a (review) adminstrator I want to be able to collect and publish an application source before and after a review. It is recommended to collect/publish before and after ...

  • Votes

    2

    ServiceNow Fulfillment with OAuth2.0 support (Rest version)

    The ServiceNow Fulfillment is currently designed to utilize SOAP endpoints. The available ServiceNow Fulfillment templates offer the possibility to configure Basic ...

  • Votes

    1

    Make the coverage map functionality available as a 'verb'

    Coverage maps are super useful, and hard to get your head around at first (and still later!). Right now they can only be used in a few places. What I would suggest is ...

  • Votes

    3

    SAP Collector should collect permission assignments for all SAP ...

    The SAP collector from IG 3.5.1 only collects permission (activity groups) assignments for the directly connected system, even if this system is a CUA. So collecting ...

  • Votes

    2

    Targeted Collection of specific account/permission

    Currently, we can only run collection on the full data set. It would be helpful to allow for us to specify a specific attribute to filter the collection. This would ...

  • Votes

    1

    As a IG Reviewer, I want a way to communicate to the Review Owner that ...

    Integration with MS Outlook's "Out of Office" message may be an option. When the review is deployed and email is sent to the Reviewer. If the Reviewer has an "Out of ...

  • Votes

    9

    Check on permissions in other technical roles on revoke of technical ...

    Currently IGA does not check other technical role contents on revoke. When you have two technical roles with (partly) overlapping permissions (which can happen with some ...

  • Votes

    8

    Ability to automatically assign additional (conditional) permissions

    A lot of applications have a structure like this: - Application account - Certain permission right - Certain default permissions that every user needs when they have a ...

  • Votes

    9

    Connector certificates in trust store

    Currently the certificates of applications need to be manually imported via the GUI. For our current customer we have multiple sort of "virtual" applications in AD and ...

  • Votes

    1

    Configupdate - add sanity checks for URL:s

    It would be nice if configupdate would do a sanity check on the URL:s entered so that they are well-formed, syntactically correct and maybe even throw in a DNS name check ...

  • Votes

    8

    Searchable, sortable and tabbed display of approval items (my ...

    As a user I want to be able to search in my approvals, sort them and have the ability to show more approvals on a page (like the default tabbed display options in for ...

  • Planned

    1

    Hold off on sending email notifications until audit is available

    With audit startup, there is a race where emails go out while the audit is still generating; on large audits, the audit generation can take quite a while, and so the ...

  • Planned

    11

    Fulfillment notification to end user and others

    As a user I want to be notified when a requested permission is actually fulfilled by the system. There are use cases in which a service desk or manager requests ...

  • Planned

    5

    Permissions bulk de-select in permissions search modal window

    Permissions search modal window has good "expression builder" you can filter permissions in different way and can do bulk selection. It would be great if in the future ...

  • Votes

    1

    Granular Application Risk Evaluation

    IG 3.5 has only a single set of rules to determine application risk. There is, for instance, only a single configuration item for "number of permissions". However, ...

  • Votes

    1

    Business Role Analysis

    Enhancements to existing analysis capabilities: 1. find business roles and permissions having relationship numbers exceeding a certain threshold - separately for child- ...

  • Votes

    3

    Business Role Mining

    Large environments (tested with 80.000 users and > 200.000 permissions) require that mining can be started for smaller portions of data. Tech Role Mining already provides ...

  • Planned

    5

    Data Policies

    There is currently no data policy that can detect attribute changes. User Access Reviews are currently not selectable for the microcertification action but this would ...

  • Votes

    1

    Business Role Management

    The approval processes for Business Role Management need more than a single approver (ran into this requirement more than once !) and appropriate escalation options. ...

  • Planned

    2

    Business Role Mining/ Results

    There should be a search/ filter function to find a certain result to make it a candidate. Sample: directed Business Role Mining for Department attribute created 28x15 ...