When user rights and resources are changed or updated in the context of a user directory, a Change Authorization is often usually required. The user rights and resources requiring such a Change Authorization may include:

  • User identity attributes (ie. name, phone number, department, etc.)
  • User/resource assignments (ie. login IDs, building access badges, etc.)
  • User security rights (ie. role/security group assignments on target systems)
These changes may require authorization from appropriate people in the organization.

See Access Change Authorization Workflow.

Return to IT Security Concepts