Behavior Driven Governance provides organizations continuous visibility into what access rights are being used, if any, and by whom.
Behavior Driven Governance enables organizations to easily enforce the principle of least privilege and reduce vulnerabilities, recertification fatigue and licensing costs associated with underutilized resources. In addition, Behavior Driven Governance assists administrators and application owners with notifications and actions related to entitlements that are rarely or never used. This out of the box feature strengthens security and compliance adherence and reduces administrative workload and costs. Behavior Driven Governance allows you to:
One Identity Manager evaluates event data, including application access frequency. It correlates any associated accounts and entitlements and then, using an attestation, it provides the user's manager or responsible party the opportunity to revoke access that may be unnecessary due to lack of application use.
If you are using One Identity Manager 9.0, you will require a Solution Accelerator, accessible via GitHub, to enable Behavior Driven Governance.
Top level benefits:
Reduce risk and satisfy compliance requirements through governance, secure user access to data and enterprise applications, and unification of security information and policies from multiple sources.
One Identity Manager:
Multi-factor authentication (MFA) strengthens your defenses against unauthorized users, using independent authentication factors to verify a user's identity prior to granting access. OneLogin MFA: