Employee life cycle (word smart)
The relationship starts when a new employee joins the organization and his identity and corresponding information must be provided. Initially, an identification of the employee as a user will be created and an assignment of standard access rights to applications will be implemented.
The following partial processes run in a typical end-to-end process:
Provisioning
Creation of the person and identifier(s)
Definition of group and role memberships
Definition of the required system and application access
Authentication and Authorization
Validation of the person's identity
Determination of the right-to-access
Audit and security reporting
Management of system authorizations
Self-Service
Registration for Password Reset and maintenance of other verification options
Password Reset and Changes, Account Unlock
Maintenance of personal information
De-provisioning
Revoking of permissions/authorizations based on current role(s)
Deactivation of the user account
Deletion of the user account...