I would like to know if it is possible to develop a script for mass creation of access profiles, some automation that reads from a CSV file or request via Jira.
NEED
Generation of roles with grouping of accesses to be assigned to a specific pre-defined group of people.
REQUIREMENTS:
Coordinators with a team of 6 or more members;
Managers who have staff directly linked to them (6 or more members).
Pre-formed roles for accesses with great synergy between each of the groups of people.
HOW?
Role formed through the Role-Insights Discovery tool for groups of people who meet the requirements, where the popularity of shared accesses is between 90 and 100%.
It is necessary to develop a script/workflow that creates an access role through the Role-Insights Discovery, where instead of using the access profiles generated by AI, the rights contained in these profiles are read and these are added to the role. It is important that we have identification information for these permissions, such as the system, the access profile from which it came, etc.
After creating the role, the Access Profiles generated by AI must be deleted in order to eliminate duplications.
The generated roles will be sent to the responsible manager through an access certification flow, so that they can evaluate the Rights and not the access profiles.
This demand was necessary since AI’s default behavior is to create new access profiles, and we need to create roles with the associated permissions.