Reconciliation process with automated discovery of account and access
Discovery of users (employees and non-employees) against their accounts in various target systems is key to the detection process. IACM provides agent-less connectors for both authoritative source and target system integration to enable enterprises to automate the reconciliation process.
The IACM discovery engine is distributed in nature and can be deployed both on-premise and on the cloud. Today, IACM has more than 70 out-of-the-box agent-less connectors that enable discovery of accounts, technical group/ role and permission across operating systems, directory servers, databases, mainframes, enterprise applications, IoT platforms and Cloud/ SaaS based applications.
IACM also supports the use of ﬂat-ﬁles/ batch ﬁles to populate the employee identity data and access rights data. The data population of this data can be scheduled for periodic reconciliation. Every target systems stores their Identity data differently.
IACM provides a mechanism for not only aggregating identity and entitlement data, but storing the data in a normalised format in the identity repository