Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Access Rights tracking system

from [Rodrigo Blanco] Network Security [Permanent Link]
Subject: Re: Access Rights tracking system
Date: Thu, 27 Dec 2007 03:44:15 -0600 
Hello Sapran,

I understand what you are looking for is an approval workflow,
deploying at least three process models (newcomer, access rights
change, and leavers). You have both open source and commercial
solutions in this area.

Of the Open source ones, I would recommend Bonita, which is a free,
java-based and very flexible BPM solution (bonita.objectweb.org).

If looking for a commercial one, I usually work with Evidian Approval
Workflow (http://www.evidian.com/iam/approval-workflow/index.htm).
While being commercial, this solution plugs optionally into a full IAM
+ SSO solution, that may provide you with an interesting functional
evolution in the future.

Both of them will provide graphical design tools to create and test
business processes.

Kind regards,
Rodrigo.

On 26/12/2007, ыфзкфт <sapran@gmail.com> wrote:

Hi list.

I am looking for the software solution to fit the following needs. Any
help would be appreciated. I tried to ask google on this, but maybe I
just cant form the correct search string...

The software must provide for tracking access rights of a person
during their employment. There must be a sort of global access matrix
and several basic and specific security roles. First, HRs must place a
request for the basic set of access rights for a new employee. Second,
an employee's manager should request for a job's specific rights.
Next, since an employee might change their job role, there must be the
way to change their access rights. There must be features to apply
access rights on temporary or scheduled basis, for affiliates and
auditors. Finally, there must be the way to suspend and terminate an
employee's access rights due to their dismissal.

Every request for a set of access rights must be approved by the
managers responsible for access rights assignment. That wold be nice
if the software might email those managers asking for approval anytime
the request is placed.

We have a medium sized company and no advanced identity management or
single login system is needed. So, this should be a framework for
access rights accounting.

Thanks in advance, have a nice day.

--
sapran
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: RDP sniffing, Stewart Gray
Next by Date:  Re: RDP sniffing, Fran Lopez
Previous by Thread:  Re: Access Rights tracking system, Kurt Buff
Next by Thread:  Secure Internet Browsing, Rodrigo Blanco
Indexes:  [Date] [Thread] [Top] [All Lists]