In many companies access rights are centralized by an Active-Directory admin managed. Changing passwords is only possible via a Windows PC or via the internal IT support. Multi-factor authentication is managed centrally. In new devices, IT support becomes active. An employee in his own department takes over a new task? Call IT support. It costs a lot of time! Are you familiar?
Change password
Multi-factor authentication
Manage department
Change master files
Possible functions in the self-service portal
Your employees can take the following steps without IT support:
Role management
Head of department or application admins can assign roles. The roles no longer have to be awarded by IT support. With a Identity Management System allows you to target specific administrative tasks for individual users unlock.
Change master files
The employees can commission changes to certain master data themselves. Examples would be private address or user image. Depending on the data set, an additional release process can be provided.
Change password
The password can be changed centrally. It then applies to all applications. Password policies can be ensured (e.g. complexity and validity of the Passwords).
Multi-factor authentication
Additional devices are used for many multi-factor authentication mechanisms. Examples are Time-based One-time passwords, Yubikeys (WebAuthn) or SMS messages. In order for these mechanisms to function, a link (e.g. cryptographic) between device must be established. and identity management system. With a self-service portal, your employees can perform these processes themselves and are does not basically depend on IT support.
