Hitachi ID Systems, Inc.

Hitachi

Products Partner Integrations Eurekify Sage
certification

Integration with Eurekify Sage ERM

Hitachi ID Management Suite can be used to extract lists of users, their attributes, and their group memberships from each managed system. This is a fundamental capability of the auto-discovery infrastructure.

Normally, roles are defined gradually over time. Since Hitachi ID Management Suite roles are typically used to request new access privileges, rather than to find and remove exceptional privileges, there is normally no need to classify existing users into roles.

If an organization wishes to analyze its current users in an effort to define and maintain a role model, then user classification tools, including powerful data analytics, will be helpful.

Hitachi ID partners with Eurekify to offer the Sage user classification / role definition technology.

Sage is used to find clusters of users with like-privileges, clusters of privileges shared by mostly the same users, users who conform to these patterns but have a small number of out-of-pattern privileges, users with simply too many privileges, etc. It is an ideal, interactive tool for role engineers to build and maintain a role model for an organization.

It should be noted that there is no technology available to automatically define all roles and to automatically classify all users into roles. The Eurekify / Sage technology is simply the most effective technology Hitachi ID is aware of to expedite this analytical, manual process.

An RBAC approach to user provisioning requires that an organization dedicate skilled staff to both develop and maintain, on an ongoing basis, the role model. This will allow both for initial setup and for the fact that role models are dynamic, due to changes in business processes, systems and applications, regulatory requirements, etc.