How does Identity Manager help with legislative compliance and auditing?
Identity Manager allows customers to enforce audit policies. An audit policy specifies what types of access a user may or may not have. For example, it is a violation of Sarbanes-Oxley (SOX) for the same user to have access to both the Accounts Payable and Accounts Receivable systems; this is known as a separation of duties violation. Identity Manager allows customers to conduct audit scanning to check for a variety of these types of violations. Identity Manager can be configured to automatically remove access or send a notification to an administrator when a violation is detected; this process is known as remediation. Using Identity Manager enables organizations to save time and money by automating both audit scanning and the remediation process.
