Access Management

From IT Process Wiki
Revision as of 10:34, 13 July 2011 by Andrea (talk | contribs)

<seo metakeywords="itil access management, access management itil, itil access management process, access management process" metadescription="Access Management: ITIL process definition - subprocesses - Additional information on ITIL Access Management." />

DE - ES - Access Managementdiese Seite auf Deutschesta página en español
DE - ES - Access Management


ITIL Access Management: Overview

Process Objective: To grant authorized users the right to use a service, while preventing access to non-authorized users. The Access Management processes essentially executes policies defined in IT Security Management. Access Management is sometimes also referred to as Rights Management or Identity Management.

Part of: Service Operation

Process Owner: Access Manager


ITIL Access Management: Process Definition

File:Itil-access-management.jpg
ITIL Access Management

Access Management was added as a new process to ITIL V3. The decision to include this dedicated process was motivated by IT security reasons, as granting access to IT services and applications only to authorized users is of high importance from an IT Security viewpoint.

The following sub-processes are part of ITIL Access Management:

Sub-Processes

Maintain Catalogue of User Roles and Access Profiles
Process Objective: To make sure that the catalogue of User Roles and User Role Access Profiles is still appropriate for the services offered to customers, and to prevent unwanted accumulation of access rights.
Manage User Access Requests
Process Objective: To process requests to add, change or revoke access rights, and to make sure that only authorized users are granted the right to use a service.


Downloads

Use the following links to open the process overview of Access Management showing the most important interfaces:


ITIL Terms: Access Management

Access Rights
A set of data defining what services a user is allowed to access. This definition is achieved by assigning the user, identified by his User Identity, to one or more User Roles.
Request for Access Rights
A request to grant, change or revoke the right to use a particular service or access certain assets.
User Identity Record
A set of data with all the details identifying a user or person. It is used to grant rights to that user or person.
User Identity Request
A request to create, modify or delete a User Identity.
User Role
A role as part of a catalogue or hierarchy of all the roles (types of users) in the organization. Access rights are based on the roles that individual users have as part of an organization.
User Role Access Profile
A set of data defining the level of access to a service or group of services for a certain type of user ("User Role"). User Role Access Profiles help to protect the confidentiality, integrity and availability of assets by defining what information computer users can utilize, the programs that they can run, and the modifications that they can make.
User Role Requirements
Requirements from the business side for the catalogue or hierarchy of user roles (types of users) in the organization. Access rights are based on the roles that individual users have as part of an organization.


Additional Information on Access Management

ITIL Roles

Access Manager - Process Owner
The Access Manager grants authorized users the right to use a service, while preventing access to non-authorized users.
The Access Manager essentially executes policies defined in IT Security Management.



Home > ITIL Processes > Service Operation > ITIL Access Management