Role based rights management


By using a role-based Access Management solution, complex access right connections between users and the various system resources in a company can be drastically simplified.

Roles can be represented on the directory level by a own object class and can be nested to a hierarchic role model. By doing so the superior role passes its respective access- right structure to the subordinate role.

With the allocation of a role the end user gets all access rights that have been defined in this role as well as all rights of the contained sub roles. Modification of access rights for single users as well as for complex user groups ( e.g. accounting, department, administrator group, executive board) is thus enormously  simplified.

By combining role definitions from a functional level ( system authorization) with those of business processes, the complete role allocation can be closely tied up with operative tasks and be optimized via automatisms.