HI
We would like to use Eramba Automated Account Review for our User access review process. Initially I thought how we do review is different and ideally its not done like this but after discussion with over dozen organization I came to conclusion that majority do it like this.
Current Process
- User accounts with their respective roles (each permission/access type per line) are collected from all applications (around 20)
- The list is consolidated into a single CSV file.
- We add other details to the list, such has the user’s manager name and manager email, and the application owner.
- We use an in-house built application whereby we upload the consolidated list, and the application sends out emails to the respective managers with a list of users who report to them.
- Feedback is taken from the managers and action is taken.
Important Note
- Account reviews are done by the manager of the staff/employee as its impossible for the system owner to know all the staff or people who should/should not have access to their system (especially in a large environment)
- Getting the user accounts and preparing the feed files is not a problem.
- Eramba does not need to worry about getting a manager or getting files etc
I would like to use Eramba Automated account review.
I want to use Eramba, but I have the following issues; requesting that anyone can help me please
- Currently, in Eramba, the account reviewer does the review, which is entered manually for each review type. this will not work for our case as each account type will have multiple user reviews and each user needs to be reviewed by different managers.
Two Possible Options
-
Creating each account review type for different managers so they will be the reviewers. This is ideal as I can easily create different feed files for respective managers.
- Problem is creating the account review manually will be difficult as we have over 50 different managers, so if there was an API to create an account review would be useful, which I believe currently isn’t.
-
I can work with the current Eramba setup, but what is the possibility of having the reviewer of each user in the feed file? for instance like
Username, Account Roles/permission, Reviewer
Thus what will happen for each review type? The pull will get the feed, and each review type will have multiple reviews (managers of respective users that are in that review). So when managers log in to the portal, they only get to review those reporting directly under them.
Looking forward to some constructive discussion and logical solution to this that works for all and not just certain groups of individuals.
Kind Regards
Ravishel Naicker
Posting Rules:
1- Your post subject must start with: “Question”, “Bug” or “Feature”. For example: Question - Internal Control Testing Dates
2- Make sure you review the documentation and FAQ before making any question, do not get offended if you are redirected by someone to read the manual!
3- If you are posting a bug or a software malfunction, please follow our Bug reporting instructions: FAQs | Eramba learning portal
4- If you are reporting a feature, you understand you have no copyright claim on it. If you make it public eramba or anyone else can take your idea, become a billionaire and share it with you nothing.
5- Keep it in English, Polite and Humorous. Sarcasm is also very much accepted.
If you can not follow these rules your post is likely to be ignored or deleted!