SupportDeveloper Docs

Upgrades to RBAC Analyzer

RBAC Analyzer has been moved inside IAM Risk Analyzer > Current State RBAC

We're excited to share some upgrades to the RBAC Analyzer. The older version of RBAC Analyzer has now been retired. This version includes all the features in the older version and much more, including UI upgrades.

Please note that this is still an early access feature and we will be making continuous improvements to this based on feedback over the coming weeks.

RBAC Analyzer, a powerful tool that revolutionizes the way organizations manage role-based access control (RBAC). The RBAC Analyzer is an AI-driven solution that generates roles based on a combination of HR, IT, and access data across all enterprise applications. This analysis produces a blueprint that helps organizations understand their Role-Based Access Control (RBAC) posture based on realtime data. Through this analysis, BalkanID's heuristics provide insights into how employees, their unique identities, and connections are grouped into BalkanID roles. These system-generated roles are further given unique names to help users identify how and why these groups were created.

The BalkanID Generated Roles do not actually exist in your systems, but its a virtual mapping of how your existing connections, resources and permissions can be grouped. You should be able to use the BalkanID Generated Roles from the RBAC Analyzer to refine your IDP roles such as Okta groups or Azure AD groups. This can help organizations keep their RBAC (that typically end up becoming stale) up-to-date at all times.

The BalkanID Generated Roles do not actually exist in your systems, but its a virtual mapping of how your existing connections, resources and permissions can be grouped. You should be able to use the BalkanID Generated Roles from the RBAC Analyzer to refine your IDP roles such as Okta groups or Azure AD groups.

Key Features:

  • Automated Role Generation: The RBAC Analyzer leverages advanced algorithms and heuristics to automatically generate roles based on employee data, job titles, departments, and actual application access patterns.

  • Intelligent Insights: Benefit from AI-powered summaries and recommendations to swiftly address potential risks and optimize your access control strategy.

  • Confidence-Based Role Mapping: Utilize heuristics-driven confidence levels to quickly identify and rectify misconfigured roles and permissions.

  • Outlier Detection: The analyzer identifies and highlights potential outliers, such as unique connections assigned to individual employees, roles assigned below a set threshold, and employees without job titles or departments.

  • Centralized Visibility & Control: Gain a comprehensive view of roles, connections, and user access, simplifying management and audit processes.

RBAC Analyzer Components:

  1. BalkanID Generated Roles: View AI-generated roles categorized by type (birthright, functional birthright, job birthright, department birthright), each with detailed descriptions for clear understanding & recommendation for merging roles.

  2. Role Usage: Visualize the mapping of departments, job titles, and assigned roles with "Role Confidence Scores" highlighting potential misconfigurations.

  3. Outliers: Easily identify and investigate potentially harmful or anomalous access patterns with categories like Unique, Below Threshold, No Job Title, and No Department.

  4. Connections: Analyze a comprehensive list of connections and their corresponding roles, providing granular insights into access granted through each role.

  5. User View: Obtain a centralized perspective of roles assigned to identities, highlighting potential anomalies like aggregated roles or excessive access rights.

  6. Connection to Role Mapping: Visualize the comprehensive membership of connections for each role, ensuring clarity and control over access rights.

  7. Users to Role Mapping: Gain a detailed overview of role assignments for each user, facilitating efficient management and audit of access privileges.

RBAC Analyzer empowers you to:

  • Strengthen Security: Proactively identify and remediate access risks with data-driven insights.

  • Ensure Compliance: Simplify adherence to regulatory requirements with clear visibility into access control mechanisms.

  • Boost Operational Efficiency: Automate role generation and centralize access management for reduced manual effort.

  • Make Data-Driven Decisions: Leverage advanced analytics and AI-powered recommendations for optimized access control.

For more information, please refer to the detailed documentation on RBAC Analyzer.

Contact support([email protected]) for any queries or assistance.

PreviousIn-app Notifications & Notification PreferencesNextSlackbot for Access Requests and Review Notifications

Was this helpful?