User Access Termination
Several processes are available for prompt and reliable user access termination. Choice of the appropriate process depends on customer business requirements and preferences:
- Scheduled access termination
Some workers, such as contractors, summer students and temporary staff, have pre-defined termination dates. These dates can be entered into ID-Synch in reference either to existing users, or to new users whose accounts will be created by ID-Synch.
A long-term scheduler built into ID-Synch can check for scheduled terminations daily, give managers advanced warning that access will be terminated and an opportunity to delay the termination date, and automatically disable and later delete login accounts.
- HR-initiated access termination
HR staff can mark employees and contractors
(note)
as terminated.
The idcompare automation engine in ID-Synch can periodically
poll the HR system for such changes and automatically disable
login access for every newly-terminated user.
- Manager-initiated access termination
Managers can use the same security change request workflow described earlier to request user access termination for their staff. Requests are routed to authorizers by e-mail, who respond on a secure, authenticated web form. Once access termination requests are approved, all login IDs for the indicated user are deactivated by ID-Synch.
- Urgent access termination
A central, web-based user management interface allows central security administrators to terminate access to any user, on any combination of systems, immediately. This facility is especially useful when access must be terminated urgently.