It is time to set your organization up with success with materials to help manage your apps and users.
To manage lifecycle processes, take stock of all the apps used across your organization—as well as which departments manage and provision those apps—and identify which have the highest task loads and highest risk factors. Automating provisioning for a popular app like Office 365, Salesforce, or AWS.
To manage access grants, map apps to their owners—whether it’s IT or line-of-business (LOB)—and identify a system for granting coarse-grained access along with roles and admin privileges. This way, you can see which apps, control roles, and groups are unused and clean them up.
To manage audits and compliance, you need to understand the regulations that apply to your business and apps, as well as the types of data stored. Since compliance is time-consuming and prone to human error, this is an excellent opportunity to modernize processes.
You've successfully taken steps to sync identity silos into a single view and made sure changes in these directories are regularly imported by Okta.
The next steps are creating a single source of truth and automating provisioning for your apps:
Create a single source of truth for managing accounts, groups, credentials, and lifecycle states, regardless of where they reside.
Now that you’ve started embedding automation into your provisioning and deprovisioning flows, it’s time to build out your audit and compliance processes.
First, set up with AD/LDAP: Starting in your AD or LDAP environment, set up business roles and group rules, using a clear naming convention—it can be helpful to track this in a spreadsheet.
Thenset up groups in Okta, use groups to assign coarse-grained access to your IT-owned company-wide apps, and fine-grained access to specific entitlements within the app.
Keep your records organized:Having clearly labeled, up-to-date records of all these permissions and roles can help prepare your org for accurate reporting, including during audits. Explore your Okta org to determine the relevant auditing processes available to you.