check before: 2024-08-26
Product:
Entra
Platform:
World tenant, Online
Status:
Change type:
Feature update, User impact, Admin impact
Links:
Details:
Summary:
Starting August 26, 2024, changes to Entitlement Management will enforce approval settings for Global Administrators and Identity Governance Administrators, preventing them from bypassing access package policy approvals. No action is needed from your organization as this is an automatic update.
Details:
We're making some changes to access package approval settings in Entitlement Management. We're introducing a new configuration that will prevent Global Administrators and Identity Governance Administrators from bypassing approval settings configured in access package policies.
[When this will happen:]
Starting August 26, 2024
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
Created:
2024-08-03
updated:
2024-08-03
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
Direct effects for Operations**
- Direct Impact on IT Operations
- Increased Approval Workload
- Global Administrators and Identity Governance Administrators will now require approvals for access package assignments, potentially leading to delays in user access provisioning.
- Roles impacted: Global Administrators, Identity Governance Administrators, IT Operations Team.
- Change in Access Management Workflow
- The enforcement of approval settings may necessitate updates to existing workflows and processes for managing access packages.
- Roles impacted: IT Operations Team, Compliance Officers, Security Administrators.
- Direct Impact on IT Services
- Potential Service Disruption
- If approval processes are not adequately managed, there may be delays in user access to critical IT services, impacting productivity.
- Roles impacted: End Users, Service Desk Teams, Application Owners.
- Increased Dependency on Approval Systems
- The reliance on designated approvers may create bottlenecks if those individuals are unavailable, affecting service delivery.
- Roles impacted: Designated Approvers, IT Service Management Teams.
- Direct Impact on IT Users
- Delayed Access to Resources
- Users may experience delays in gaining access to necessary resources, which could hinder their ability to perform their job functions effectively.
- Roles impacted: End Users, Department Managers.
- Increased Communication Needs
- Users may need to engage more frequently with administrators to understand the new approval processes, leading to increased communication overhead.
- Roles impacted: End Users, IT Support Teams, Department Managers.
References:
- Microsoft Entra ID Governance Best Practices: [Microsoft Documentation](https://learn.microsoft.com/entra/id-governance/entitlement-management-access-package-assignmentsdirectly-assign-a-user)
Opportunities**
- Enhance Compliance and Security Posture
- Opportunity: With the enforcement of approval settings for Global Administrators and Identity Governance Administrators, there will be a stronger compliance framework in place. This change can help mitigate risks associated with unauthorized access and ensure that access to sensitive resources is properly vetted.
- Roles that might profit: Compliance Officers, Security Administrators, IT Auditors.
- Reference: Microsoftâs best practices for Identity Governance emphasize the importance of maintaining a secure environment through proper access controls. [Microsoft Entra ID Governance](https://learn.microsoft.com/entra/id-governance/entitlement-management-access-package-assignmentsdirectly-assign-a-user)
- Streamline Access Management Processes
- Opportunity: The new approval requirement can lead to the establishment of a more structured access management process. This can help in defining clear workflows for access requests, thereby improving the efficiency of the IT operations team in managing user access.
- Roles that might profit: IT Operations Managers, Identity Governance Administrators, Help Desk Staff.
- Reference: Implementing structured workflows can enhance operational efficiency, as noted in various IT governance frameworks. [ITIL Framework](https://www.axelos.com/best-practice-solutions/itil)
- Training and Awareness Programs for Administrators
- Opportunity: The change presents an opportunity to conduct training sessions for Global Administrators and Identity Governance Administrators on the new approval processes. This can improve their understanding of the governance model and enhance their ability to manage access requests effectively.
- Roles that might profit: Training Coordinators, Global Administrators, Identity Governance Administrators.
- Reference: Training and awareness are critical components of effective IT governance, as highlighted in various IT management resources. [ISACA IT Governance](https://www.isaca.org/resources/it-governance)
Potentional Risks**
XXXXXXX ... paid membership only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 4 months ago