Efficient Role Lifecycle Management with Integration to SAP-HR
An integral part of AMAG’s corporate philosophy is the continuous improvement of processes. Throughout the organization processes are constantly assessed in the search for possible improvements in terms of quality, costs, and time.
As the IT department at AMAG was experiencing an increased workload and costs due to outsourcing and highly manual access provisioning processes, they saw the need for an automated user lifecycle management solution.
Adaptable and easily integrated solution
AMAG based its user access provisioning on identity data and standard roles derived from the HR department with SAP-HR as the leading system and AD and SAP as target systems. To fulfil its requirements for automated user lifecycle management the IT department sought a solution that would facilitate management of identity data from SAP HR, provide connectivity between Microsoft and SAP, and also automate the full role lifecycle management process.
A key driver for selecting Omada Identity was the high adaptability of the solution with easy integration across all systems and applications, and its strong connectivity to SAP systems and Microsoft AD. In particular the IT department requested a solution that would fulfill the following requirements:
- Short implementation schedule
- Integration to SAP HR and Microsoft
- Provide enterprise-wide automated and efficient user lifecycle management
- Self-service access request portal
Two months implementation time
The solution in place at AMAG manages 1,200 identities and was implemented in just two months’ time. The solution automates the processes related to AMAG’s user lifecycle management, provisioning, and role management.
Users are able to request additional roles or access rights via a self-service portal with an intuitive user interface that unifies the access request process and replaces inefficient manual processes.
“The benefits of the solution are very obvious. We selected Omada’s solution as we would achieve our objectives within a short time span. The solution was up and running in just two months, and has increased efficiency of the access provisioning processes and the user lifecycle management and also reduced cost as we have eliminated the time-consuming and resource intensive manual processes,” says Dr. Werner Aumayr, CIO at AMAG.
A higher level of compliance
Omada Identity is built on the Microsoft platform, so it easily integrates into existing infrastructures, which reduces the need for custom development and decreases deployment time. Best-practice template workflows automates time-consuming tasks such as employees on-/off-boarding, user access request management, password reset, and other identity related processes.
Adding to the benefits of automated access provisioning processes and role lifecycle management is the builtin compliance reporting features. Omada’s solution enables AMAG to reduce the amount of manual resources it normally takes to generate reports for compliance purposes. On-demand graphical reporting accurately provides the necessary data for both historical and point-in-time transparent view of access rights for AMAG.
“As a stock-exchange listed company a further benefit was that our compliance processes were lifted to another level due to the compliance reporting features in Omada Identity ,” says Dr. Werner Aumayr. With its initial role lifecycle management project successfully implemented the IT department looks forward to extending the solution with Omada’s data warehouse for increased reporting and current state/desired state comparisons, which will provide a complete overview of access rights in the organization for on-demand audit purposes and compliance control.
Omada Identity is a Microsoft based solution for identity and access management and identity governance and administration. The solution integrates seamlessly with various systems including Windows Server IIS, Active Directory (AD), Azure IaaS, Forefront Identity Manager, and SAP to deliver a complete solution for identity and access management:
- Advanced role based access control
- Compliance reporting and attestation
- Workflows with approval
- Segregation of duties
- Delegated administration
These features provide immediate and significant business benefits including:
- Fulfilled regulatory compliance requirements
- Increased enterprise productivity
- Reduced user management cost
- Heightened data security