Identity Governance and Administration

AI-Driven Identity Governance for the Modern Enterprise

Data Sheet

What Is Identity Governance and Administration?

ForgeRock Identity Governance and Administration is an AI-driven, modern identity lifecycle management solution that simplifies the access request, access approval, certification, and role-modeling processes. By leveraging an AI/ML analytics engine, the ForgeRock IGA solution can identify and apply appropriate user access, automate high-confidence access approvals, recommend certification for low risk accounts, and automate the removal of unnecessary roles. By applying and enforcing compliance policies in a preventive and detective manner, ForgeRock IGA ensures regulatory compliance when and where you need it. Combined with the ability to flexibly manage multiple types of identities – person, non-person, services, and things – via an extensible data model, administrators can define policies on the relationships between them as well. By fully automating these processes, your organization can close the overprovisioning and unauthorized user access gaps in your annual or bi-annual certification reviews.

What is ForgeRock Identity Governance?

ForgeRock Identity Governance and Administration Benefits

adaptive-risk.svg

Increase Workforce Productivity

  • Automate high-confidence user access approvals
  • Empower employees with automated policy-based self-service access to any system, application, and infrastructure
  • Automate access and governance controls to more easily manage the demands of today’s dynamic workforce throughout a user’s lifecycle

identity-governance.svg

Achieve Regulatory Compliance

  • Automate high-confidence access certifications via AI-based remediation recommendations
  • Quickly grant and enforce secure access to systems, applications, and infrastructure according to established business policies
  • Maintain user access audit trails of every identity in your organization, demonstrating compliance with high-confidence

analytics.svg

Boost Business Operational Efficiency

  • Automate access request approvals with AI-driven recommendations
  • Prioritize and review high-risk and inappropriate user access privileges
  • Automate low-risk access requests and certifications with machine learning determined high-confidence scores

autonomous-identity.svg

Govern Access with AI-Driven Intelligence

  • Recognize abnormal or outlier user access that is hard to identify with a manual approach
  • Accelerate compliance decision making with contextual user access insights
  • Leverage machine learning algorithms to evolve user access policies and remediation recommendations

ForgeRock Identity Governance and Administration Features

AI-Driven Identity Governance for Today's Modern Enterprise
AI-Driven IGA Solution

As a comprehensive AI-driven IGA solution, organizations can collect and analyze identity data (e.g. accounts, roles, attributes, entitlements, and more) from diverse identity data sources (e.g. identity governance, identity management, infrastructure, and more) in order to provide enterprise-wide user access visibility. Combined with simplified access requests, approvals, segregation of duties policies, certifications, and role mining capabilities, enterprises can fully automate the entire identity lifecycle for creating, managing, and restricting identity access to accounts, systems, applications and infrastructure.

Data Agnostic

ForgeRock IGA works with all existing identity data types to develop a complete view of the user access landscape. By consuming and analyzing tens of millions of data points, the solution can predict and recommend user access rights and highlight potential risks. Total landscape visibility provides highly accurate models on what good access should and should not look like. Unlike other “black box” IGA solutions, that are based on static rules, roles, and peer group analysis, ForgeRock IGA relies strictly on organizational data to develop an analysis that is free from any bias that might come from human-derived rules and roles that exist in your existing identity governance solution.

Extensible Data Model

ForgeRock IGA’s extensible data model allows organizations the flexibility to manage multiple identity types, including: customers, partners, workforce, citizens, machines, devices, bots’ APIs, applications, microservices, and more. Combined with a highly intuitive user interface (UI), administrators can visually define policies based on the contextual relationships between any persons, non-persons, services, and things. This intelligence-based approach allows organizations to automate identity orchestration across the entire identity lifecycle.

Self-Service Access Requests

With ForgeRock IGA, users can access the highly intuitive self-service access request UI or a RESTful applications programming interface (API). Based on AI-driven analytics and recommendations, user access requests can be automatically approved and provisioned without manual, human review and fulfillment. This automated process ensures users are productive from day one while reducing help desk calls and tickets, thus increasing operational efficiencies and lowering security and IT workloads. 

AI-Driven Access Reviews

While traditional identity governance solutions recommend annual or bi-annual reviews, ForgeRock IGA ensures organizations achieve continuous compliance by leveraging AI-driven identity analytics. Organizational actors – application owners, supervisors, administrators, and others – can take corrective action based on AI-driven analytics-based remediation recommendations, such as revoking stale user access rights and automatically removing them. By automatically approving and certifying high-confidence and low-risk access requests, enterprises can reduce operational burdens and accelerate certification campaigns across the entire organization.

Proactive Policy Enforcement

ForgeRock IGA allows organizations to define security policies to ensure that toxic access combinations never happen. With AI-driven analytics, security and IT professionals can evaluate segregation of duties (SOD) policies during the access request process as a preventative control to ensure violations or improper access grants do not occur. Combined with the ability to schedule policy evaluations, organizations can proactively scan all identity data as a detective control in order to find rogue accounts or inappropriate user access. By automating policy enforcement, enterprises can reduce security access risks and maintain regulatory compliance across the entire organization.

Resources

Blog

IAM 101 Series: What is Identity Governance and Administration (IGA)?

Learn what IGA is and why it’s become such a priority.

Product Data Sheet

ForgeRock Identity Governance and Administration: High-level Overview

AI-Driven Identity Governance for the Modern Enterprise

Whitepaper

Maximize the Value of Your Identity Solution with AI-Driven Identity Analytics

Learn how to gain enterprise-wide user access visibility, reduce security risks and achieve continuous compliance

Solution Brief

AI-Driven Identity Governance for Today's Modern Enterprise

Learn about ForgeRock’s Modern AI-driven IGA Approach