      |
Real-world attempts to implement roles-based systems have shown that unless roles fit into a context that ties together existing entitlements, company policies, regulatory requirements, and current business process realities, they simply don’t work. Without this context, the result is a system that can’t keep pace with changing business-user requirements.
This paper describes a new roles-based model of access governance that overcomes the challenges companies have faced in the past with roles-based access control systems. This new model provides a policy based approach that delivers insight into role relevancy and effectiveness and enables comprehensive role lifecycle management from discovery through retirement, which previously has been lacking in roles-based access systems.
