How PlainID Policy Based Access Control
Platform Solves Common IAM Issues
IAM managers have been facing increasing problems in the past few years. Some of these problems are caused by changes in technology and their effects on Authorization. Others are related to the way Authorization has been implemented in the field.
PlainID’s PBAC platform solves both these of challenges. In the previous section, we discussed how PBAC solves problems related to the cloud and to mobility. Here we discuss how Smart Authorization solves the implementation issues.
One of the most common phenomena in RBAC systems is “role explosion”. Role explosion occurs when a company creates very specific roles to cover every possible net of permissions needed. As network resources grow, not only do existing roles get more complicated, but new ones get added.
PlainID recently solved this and other problems for a client we’ll call “Company A. Company A began with over 1,000 individual roles. The IT team managing them was overwhelmed to say the least.
As it does with all clients, PlainID used PBAC’s policy creating features and its use of attributes to reduce the number of roles significantly. By using attributes such as location and the time of access requests as input PlainiD was able to make each basic role more flexible. For example, for an American client, instead of having 50 roles for insurance salespeople to access the forms relevant to their state, PlainID could create one role called “salesperson° and use another attribute, “state” to link salespeople with their state.
PlainiD made the process simpler by first making the entire system visible. This made it much easier to best match users to data. By the time PlainID’s PBAC platform went live, Company A had approximately 50 roles instead of 1000!
The result was a net of flexible, dynamic, fine-grained Authorization policies that could be altered in run-time, if needed. By making access management simpler, PBAC saved the company thousands of dollars in IT costs, while freeing up days, if not months, of the team’s time. Moreover, using PBAC enabled management to take over access management decision-making.
In the past, this area was so complex that it was run by IT. But Authorization is really a business decision: determining who has access to which data is one of the most important decisions a company will make. PBAC enables you to set access management policies via an easy-to-use user interface without writing a single line of code.
The PBAC Platform’s support of management includes approval and audit functions. You can configure the software to require a manager’s approval before implementing any change of access management policy. The platform’s record-keeping abilities enable you to perform audits and generate reports of their findings.
PlainID’s PBAC platform is the ideal Authorization solution for enterprises and SaaS providers. Its PBAC-based solution offers fine-grained access management that is both extremely flexible and easy to use. It is designed to integrate with any environment, support all manner of access points, and safeguard your data in all scenarios, including B2B usage.
PlainID’s PBAC platform is ready for today’s challenges — and tomorrow’s.