Home
Product Guides
Start typing to search…

Frequently Asked Questions

What is an Identity and Access Management (IAM) solution?

Answer:

An IAM solution is a framework of policies and technologies designed to manage digital identities and control access to information systems. It ensures the right individuals can access the right resources at the right time for the right reasons, using features like single sign-on (SSO), multi-factor authentication (MFA), and role-based access control (RBAC).

How does Single Sign-On (SSO) work?

Answer:

SSO allows users to log in once with a single set of credentials and gain access to multiple applications and services. It works by authenticating users with a central identity provider (IDP) using protocols like SAML, OAuth, or OpenID Connect, which then grants access to connected applications without requiring multiple logins.

What is Multi-Factor Authentication (MFA)?

Answer:

MFA is an authentication method that requires users to provide two or more verification factors (such as a password and a temporary code from an app like Google Authenticator) to access an application. This adds an extra layer of security beyond just a username and password.

How can I add a new user to the IAM system?

Answer:

You can add a new user by either:

Manual Creation: Go to the user management dashboard, click "Add User," and fill in the necessary details like name, email, role, and group memberships.

Automated Processes: Integrate with external directories like Active Directory or upload a CSV file with the user information to bulk create users.

What should I do if I forget my password?

Answer:

Click the "Forgot Password" link on the login page. You will be prompted to enter your registered email address, and instructions for resetting your password will be sent to you. Follow the steps in the email to set a new password.

How do I set up MFA (Google Authenticator) for my account?

Answer:

After logging in for the first time or resetting your password, you will be prompted to set up MFA. Follow these steps:

Download and install the Google Authenticator app on your mobile device.

Scan the QR code displayed on your IAM dashboard using the app.

Enter the code generated by the Google Authenticator app into the IAM portal to complete the setup.

How do I request access to a new application?

Answer:

To request access to an application:

Navigate to the "Applications" or "Access Requests" section of the dashboard.

Select the application you need access to and submit your request.

Your request will be sent to the designated approver for review. You can track the status of your request in the "Access Requests" tab.

How are access requests approved?

Answer:

Access requests follow a defined approval workflow. Once a request is submitted, it is routed to the designated approver (such as a manager or administrator) for review. They can either approve or deny the request. Once approved, access is automatically granted to the requested application.

How do I view my account's activity and login history?

Answer:

You can view your account activity by navigating to the "Account Settings" or "Security" section of the IAM portal. Here, you’ll find a log of recent login attempts, application access events, and any actions taken within your account.

What is Role-Based Access Control (RBAC)?

Answer:

RBAC is a method of restricting access based on a user’s role within the organization. Roles are predefined, and users are assigned to roles that grant specific permissions. For example, a "Manager" role might have access to employee data, while a "Staff" role may only have access to their personal records.

How do I create or modify roles in the IAM system?

Answer:

Administrators can create or modify roles by:

Going to the "Roles" section in the admin dashboard.

Clicking "Create Role" and defining the role's permissions.

To modify an existing role, select the role and update its permissions or assign new users to the role.

How can I generate reports on application usage and access?

Answer:

To generate reports:

Go to the "Reports" section in the IAM dashboard.

Choose the type of report you want (e.g., user access history, application usage).

Set any necessary filters (e.g., date range, specific user groups) and generate the report. The report can be exported as a CSV or PDF file.

How does the IAM solution help with compliance requirements (e.g., GDPR, HIPAA, SOC 2)?

Answer:

The IAM solution supports compliance by:

Enforcing strict access controls and ensuring that only authorized users have access to sensitive data.

Logging and auditing all user activity for review.

Providing encryption of data both at rest and in transit, and enabling access certification campaigns to regularly review access rights.

What should I do if I suspect unauthorized access to my account?

Answer:

If you suspect unauthorized access:

Immediately change your password.

Enable or review MFA settings to ensure your account is protected.

Contact your system administrator or support team to investigate the issue further.

How do I update my personal information, such as email or phone number?

Answer:

To update your personal information:

Navigate to the "Account Settings" section.

Under the "Profile" tab, you can update your email, phone number, or other personal details.

Some changes may require administrative approval or verification.

Can I integrate the IAM solution with other enterprise systems like Google Workspace or Microsoft Active Directory?

Answer:

Yes, the IAM solution supports integration with various external identity providers. You can integrate with Google Workspace, Microsoft Active Directory, or other directory services using standard protocols like LDAP, SAML, or OAuth.

What are the different authentication methods available in the IAM solution?

Answer:

The IAM solution supports multiple authentication methods, including:

Password-based Authentication

Multi-Factor Authentication (MFA) using Google Authenticator, SMS, or email verification

Single Sign-On (SSO) via SAML, OAuth, or OpenID Connect

Biometric Authentication (e.g., fingerprint or facial recognition)

How often should I change my password?

Answer:

It is recommended to change your password every 60 to 90 days to maintain security. Additionally, if you suspect your password has been compromised, change it immediately.

What should I do if I’m locked out of my account?

Answer:

If you're locked out of your account due to multiple failed login attempts or MFA issues, contact your system administrator or the support team to regain access. You may need to verify your identity before your account is unlocked.

How do I delete or deactivate a user account?

Answer:

Administrators can delete or deactivate user accounts by:

Going to the "User Management" section.

Selecting the user account and choosing either the "Deactivate" or "Delete" option.

Deactivation will suspend the account, while deletion will permanently remove the user and their data from the system.

Updated 12 months ago