The Identity Governance product enables administrators and managers to easily collect all user and access information in one central location and certify that users have only the level of access that they need to do their jobs. Following the principle of least privilege, this product allows you to ensure that your users have focused access to those applications and resources they use and cannot access resources they do not need to access.
With Identity Governance, administrators and business managers can ensure that your employees, either individually or as a group, have the appropriate set of permissions and roles. Identity Governance collects information from various identity and application data sources and manages the entire review and certification process. Identity Governance provides tools to guide you through the key phases of the access, identity attributes, reporting relationships, role memberships, and account reviews; SoD (Separation of Duties) and audit management; and validation and remediation processes.
This guide provides guidance for:
Requesting access
Approving access requests
Previewing review data
Reviewing user access, user profile, accounts, business role memberships, and direct reports
Approving review changes
Fulfilling change requests
Viewing completed reviews and fulfillment status
For information about administrative functions in Identity Governance, see the Identity Governance Administration Guide on the Identity Governance Documentation website.