:: Home : Products : Identity Management : SAGE : SAGE

Eurekify

PRODUCTS:

Identity Management and Provisioning

SAGE: Role-Based User Management from Eurekify
Sage has been developed to provide automated discovery and management of job roles for User Administration & Provisioning and significantly reduce the cost of implementation of an EUA solution from leading vendors.

Any enterprise considering or already implementing an EUA project with vendors (such as BMC Control-SA, Netegrity/Business Layers eProvision (now owned by Computer Associates), Beta Systems (previously Systor) SAM Jupiter, Access360 enRole, Tivoli, CA eTrust Admin, Sun/Waveset Lighthouse, Thor Technologies etc) will know the importance of defining rules and roles for access control and user provisioning. However the cost of implementation is a critical factor in both time and cost but can be significantly reduced with Sage.

• Map your own IdM needs and requirements
• Sage is critical for the success of IdM deployments
• Essential for ongoing privileges management
• Helps you achieve and document compliance with policies and regulations
• Cleanup and streamline privileges and group definitions
• Attain role-based management on key platforms
• Achieve and document compliance with policies and regulations

Sage will result in the enterprise:

• Roles mining & rules mining to discover users privileges
• Logical grouping of access rights
• 5-7 roles per employee instead of 20-50 individual privileges
• automated discovery & management of the roles
• faster implementation of EUA projects – reducing costs
• working with most Identity Management (IdM) & EUA technologies
• working with most home-grown privilege management systems
• audit & cleanup of existing mainframe (RACF, ACF/2, TopSecret etc)
• Identify excess & wrongful privileges on specific systems or for specific users
• Improve audit & control

Overview

A well-designed infrastructure for privileges management should include abstraction layers for administering large user populations and controlling access to resources. The need to effectively and securely manage access rights in large organizations, together with a growing number of regulations that demand consistency and enforcement of clear policies, drive IT administrators to increasingly migrate to role-based security management models.
Role-based Access Control (RBAC) is considered the most effective and secure privileges management philosophy. A good RBAC implementation groups privileges around "business roles", e.g., corresponding to organizational structure, job functions, business processes, etc. As such, most modern enterprise software support and encourage RBAC.
Almost all computing platforms and operating systems support some form of RBAC, or at least group-based structure, e.g., RACF, Unix, Windows, ERP systems, and naturally Identity Management systems that aim to provide a solution to privileges provisioning and management issues.
However, while RBAC is identified as key to effective and secure management of privileges, there is a lack in tools that would support the initial construction of business roles and their on going management on a large scale. Organizations around the world have found it difficult to deploy role-based management on a large scale by relying on manual analysis of organizational structure and business processes.
This is where Eurekify's Sage technology comes in.
Eurekify's Sage Discovery & Audit is the leading tool for achieving true Role-Based Management. Sage is the only application that supports the entire life cycle of role definitions. Eurekify's technology is critical to the success of all Identity Management projects, as well as of any project aimed at deploying role-based management on other platforms and applications. Furthermore, Sage DNA provides rich functionality around auditing role-based privileges, and for verifying and documenting compliance with policies and regulations.

Here is how Sage Discovery & Audit can be used as part of role-based privileges management solutions:

Sage DNA for Identity Management Systems
http://www.eurekify.com/solutions.sage.for.identity.management.asp

- e.g., IBM Tivoli Identity Manager, BMC Control-SA

Sage DNA for Role-Based Management on Other Platforms
http://www.eurekify.com/solutions.sage.for.single-platform.role-based.management.asp

- e.g., mainframe security systems, enterprise directories, ERP systems, other enterprise applications