- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-31-2019 12:59 PM
One of our business partners is looking for a particular ServiceNow use case:
I’m looking to assess the need/interest level of existing ServiceNow customers in ongoing Identity access certification automation.
Backdrop:
Once workflows are provisioned to end users, each time they login they are re-authenticated, however they are either never or manually re-certified (meaning that they should still have access) for that specific workflow.
There is a fundamental compliance element of this as well.
Most SW today that is used for identity access mgmt. and governance such as Okta and SailPoint requires manager to manual assess and re-certify each individual for every workflow. They also have no way of know if the employee still needs access or should have access.
Solved! Go to Solution.
- Labels:
-
Best Practices
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-09-2019 12:41 PM
Thank you, @amardiswamy! We have found that customers will use an Identity & Access Management solution to collect and manage entitlements. This is the process of “user access attestations” and its something that the customer needs to have an IAM program for.
I found out that ServiceNow will rely on dedicated solutions to monitor, review, and revoke access from our internal GRC/IRM team. Thanks!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-31-2019 02:33 PM
Hi Andy,
Not sure if I understood correctly or not. Generally speaking, servicenow is a powerful platform where we can build applications very easily if we have the use case list.
Basic platform also provides functionalities like catalog items (Self-service forms to submit the request) and workflows to follow as per the designed process of the form. In the workflow, we can write powershell, JDBC, Probes , call REST APIs, SOAP messages , generate approvals, tasks , notifications etc.,
Best example is creating a user in AD, creating a mail box and add user account to Distribution list etc., if user submits a new hire form.
To conclude, we can either create scripts in servicenow with the native functionalities of platform or simply can integrate to third party where actual action happen and leverage servicenow to kick-off the process after approval step is completed (if any approval is required)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-09-2019 12:41 PM
Thank you, @amardiswamy! We have found that customers will use an Identity & Access Management solution to collect and manage entitlements. This is the process of “user access attestations” and its something that the customer needs to have an IAM program for.
I found out that ServiceNow will rely on dedicated solutions to monitor, review, and revoke access from our internal GRC/IRM team. Thanks!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-01-2020 06:40 PM
Hello Andy,
I noticed that this thread is already many months old, but just wondering if you are still looking for a solution. Our company has a ServiceNow store app for Identity Management, that has pre-built Certification and 'residual access' removal.
Happy to share more details if this is still relevant. Feel free to drop me a note directly or visit https://zertid.com
Cheers, Arun
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-27-2023 12:46 AM
Hi Andy,
here is a great store application to resolve the above challenge: https://store.servicenow.com/sn_appstore_store.do#!/store/application/38e2cb954f2a8f008ef74fa18110c7...
