Now that you’ve started embedding automation into your provisioning and deprovisioning flows, it’s time to build out your audit and compliance processes.
- First, set up with AD/LDAP: Starting in your AD or LDAP environment, set up business roles and group rules, using a clear naming convention—it can be helpful to track this in a spreadsheet.
- Then set up groups in Okta, use groups to assign coarse-grained access to your IT-owned company-wide apps, and fine-grained access to specific entitlements within the app.
- Keep your records organised: Having clearly labeled, up-to-date records of all these permissions and roles can help prepare your org for accurate reporting, including during audits. Explore your Okta org to determine the relevant auditing processes available to you.