Home
|
Products
|
Services
|
Customers
|
Partners
|
About Us
|
News & Events
|
Support
Home
>>
Products
>>
VIS
>>
VIS for Automated Compliance Management
>> Use Cases
Virtual Identity Server for Automated Compliance Management
(VIS for ACM) A Codeless, Real-time Active Directory Compliance Solution
Use Cases
The Virtual Identity Server for Automated Compliance Management (VIS for ACMâ„¢) provides organizations with a powerful framework for achieving and automating compliance. Being a flexible and extensible framework, VIS for ACM, provides for a near limitless set of use cases for the product.
Highlighted below are just some of the common use cases that customers can achieve in a matter of minutes.
Example Use Cases
Monitor Application Bind Accounts
to ensure that their password has not changed or been disabled. In the event this occurs, multiple actions such as emailing administrators or re-enabling the account can occur.
Benefit:
Prevents system outages for key applications
Monitor & Enforce AD Group Membership
Monitor and optionally enforce the membership of Active Directory groups in real-time. Administrators control the criteria and the optional corrective actions (adding/removing users from the group).
Benefit:
Stops a rogue end user or administrator from changing group membership for key groups.
Automate Account Aging Process
by emailing end users or managers with accounts that have inactivity over x days. Accounts can then be automatically moved, disabled or deleted after further inactivity.
Benefit:
Reduces user identities no longer in use, lowers risk of systems breach, or audit failure.
Automate Account Aging Process
by emailing end users or managers with accounts that have inactivity over x days. Accounts can then be automatically moved, disabled or deleted after further inactivity.
Benefit:
Reduces user identities no longer in use, lowers risk of systems breach, or audit failure.
Separation of Duties (SoD) Compliance
can be achieved by identifying toxic combinations as the policy filter. For example, users that are a member of the Check Writing AD group should not be a member of the Invoice Approval AD group.
Benefit:
Event notifications (emails/reports) can instantly alert administrators of the condition, and can also be remediated automatically.
Attestation
can now be completely automated to delegated administrators and end users.
AD Group attestation
can be achieved by periodically reporting/notifying AD group owners of the members of the group, or optionally making group owners attest/verify the members of the group. Likewise,
AD user attestation
can be achieved by periodically reporting/notifying managers of end users access and optionally having them attest/verify the permissions for their employees.
Benefit:
Manual attestation processes (or no process) can be quickly and easily automated to gain compliance and eliminate audit failures.
VIS for ACM
Overview
Features
Benefits
Use Cases
Other Products
Virtual Identity Server
VIS LDAP Proxy Firewall
VIS for ILM/FIM
VIS for SharePoint
Optimal People Picker
VIS for EGM
VIS Reports for AD
Additional Resources
White Paper Downloads
Product Downloads
Frequently Asked Questions
Video Demonstrations
VIS for ACM Datasheet (pdf)