What is best practice? Who should be the owner for the HR app and Active Directory in IdentityNow?
As in IIQ normally ‘Admin’ updated as the owner for such applications.
There is no such admin user in IDN. Best practice is to use actual identity of the application owner as the owner in IDN, alternatively you can create a Non-Employee identity and use.
Assigning a Source Owner
IdentityNow requires the selection of an owner for each source. This user is known as a source owner.
A source owner may complete specific tasks for the following IdentityNow services:
- Provisioning - For sources that are not direct-connect, source owners will receive notifications in their Task Manager when an account needs to be added, modified, or removed.
- Certifications - A source owner may be asked to review the access of people who have entitlements on a source. They may also receive tasks to remove entitlements that were revoked during certification campaigns.
Hi Arjun,
The best practice will be to assign it to who owns the application. Please make sure that once they leave the organization you will need to manually update the details for them in IdentityNow.
Otherwise have a Service Account created for them in IDN and assign it to them. The only thing with Service Account will be you will need to make sure that it is only givenSource Admin Privileges and is shared with the owners of the source.
Thanks
Hello Arjun, The best practice is to have the actual app owner as the owner in IDN as well.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.