What is Group and Role Management?

Group and Role Management is an approach to help manage authorizations in an application. It allows an organization to manage application authorizations more efficiently by treating a collection of users who need the same type of application access as a unit. One or more authorizations can be associated with the role and users can be assigned to that role either by request or automatically based on some attribute they possess (i.e. department, job title, position, etc.).

SailPoint IdentityIQ (IIQ) is a software tool that will be used to support group and role management at UT Austin.

What is SailPoint IIQ and how does it enable Group and Role Management?

SailPoint IIQ is an identity administration and access governance system. One of its key feature is the ability to support group and role-based access management. This functionality includes:

• Roles that grant various types and levels of access
• Roles that grant the minimum privileges required by an individual to perform his/her job
• Roles that restrict access to sensitive information assets by grouping entitlements in a form that is meaningful to the business

What are the benefits of Group and Role Management?

Group and Role Management provides the following benefits:

Figure 1: Group and Role Management Benefits