Skip to main content

Hitachi ID Group Manager Screen Recordings

Windows “Access Denied” dialog leading to group membership request


Play movie

Content:

  • A user is guided through the access request process.
  • The video starts with the user encountering a Windows "Access Denied" error dialog.
  • The user is guided to a request to for membership in the appropriate Active Directory security group.

Key concepts:

  • Users frequently need access to new shares, folders, etc. but they don't understand access control lists (ACLs) or security groups.
  • To attain high user adoption for self-service security entitlement management, it is important to implement a system which allows for this gap in users' knowledge.

Authorization of a request for security group membership


Play movie

Content:

  • A request for group membership is routed to the group's owner for approval.

Key concepts:

  • The default authorizers for changes to membership in a group are the group's owner(s) on Active Directory.
  • Customer-specific business logic can route requests to other or additional users for approval.
  • Approval by N of M people, reminders, escalation and delegation are all built-in.

Request approved, user can access the folder


Play movie

Content:

  • The user signs out, signs back in and can access the folder which previously caused an "Access Denied" error.

Key concepts:

  • On Windows, changes to a user's group memberships only take effect when the user signs into his PC.
  • This means that after the user was added to the group in question, he must sign off and sign back on before he can access the protected share, folder, etc.

Sharepoint “Access Denied”


Play movie

Content:

  • A user tries to access a site in SharePoint.
  • A user has no access rights.
  • The error message is modified by Hitachi ID Group Manager.
  • The user is directed to the appropriate request page on the Hitachi ID Group Manager request portal and requests access to the appropriate SharePoint group for his personal AD account.
  • Once the request is approved, the user can access the SharePoint site.

Key concepts:

  • Intercepting "Access Denied" error messages on SharePoint.
  • Diverting change requests and approvals out of IT and back to business users, who understand the business need for the access.
  • Reducing security administration IT call volume.

page top page top