1.3 User Application

Create groups of users, usually associated with their position in your organization, such as the Finance Department.

Map role and resources assignments to resources within your organization, such as user accounts, computers, and databases. For more information, see Section 12.0, Creating and Managing Resources.

Assign ownership to and configure the methods for approving roles and resources.

Configure password management settings so users can reset their own passwords. For more information, see Section 14.3, Password Management Configuration.

Ensure that your organization has a method for verifying that personnel are fully aware of organizational policies and are taking steps to comply with these policies.

Ensure that access to corporate resources complies with organizational policies and that provisioning occurs within the context of the corporate security policy. You can grant users access to identity data within the guidelines of corporate security policies. For more information, see Section 5.0, Configuring Security in the Identity Applications.

Create workflows to reduce the administrative burden of entering, updating, and deleting user information across all systems in the enterprise. These workflows provide a Web-based interface for users to manipulate distributed identity data that triggers workflows as necessary. For more information, see Section V, Configuring and Managing Provisioning Workflows.

Support complex workflows and manage manual and automated provisioning of identities, services, resources, and assets.

You can establish a manual provisioning process by creating workflows that route provisioning requests to one or more authorities. For automated provisioning, you can configure the User Application to start workflows automatically in response to events occurring in the Identity Vault. The Dashboard can trigger a workflow when users request permission.

For more information, see Section V, Configuring and Managing Provisioning Workflows.