opexxx · November 3, 2021 15:52
diff --git a/Application Governance b/Application Governance
 What is Application Governance?
 • Application owners manage business applications consisting of entitlements and roles
 • Once defined, owners manage how access to these applications can be requested in the IT shop
 • Key Performance Indicators help validate compliance against business objectives
 • Governance-relevant information can be defined based on an application
 • The next release of Identity Manager will include the new Application 
 Governance module that bring applications as first-class citizens to the architecture

 What Application Governance is not
 • It’s not about connectors or mapping fields
 • It’s not about loading data from systems or files
 • It’s not a low-level technical feature
 • It’s not an architectural change

 What is an application?
 • A business application is comprised of entitlements
 • Entitlements often exist as a simple flat list. Bringing these entitlements
 under governance is about organizing them into larger, more manageable units
 • As an example, One Identity has customers who use an AD LDS tree to
 implement 1000s of business application authorizations
 • A business application may not exist as such in any one target system – it
 may span several types of target systems

 What is an entitlement?
 An entitlement can be one of the following:
 • A system entitlement from the Unified Namespace
 • A system role
 • A resource
 • An account definition
 • A subscribeable report

 Application Governance
 The Application Governance Module delivers an easy way for
 application owners to:
 • Determine who can request entitlements
 • Choose specific entitlements for certification campaigns
 • Validate KPIs against business objectives
 • Publish applications to the IT Shop service catalog
	What is Application Governance?
	• Application owners manage business applications consisting of entitlements and roles
	• Once defined, owners manage how access to these applications can be requested in the IT shop
	• Key Performance Indicators help validate compliance against business objectives
	• Governance-relevant information can be defined based on an application
	• The next release of Identity Manager will include the new Application
	Governance module that bring applications as first-class citizens to the architecture

	What Application Governance is not
	• It’s not about connectors or mapping fields
	• It’s not about loading data from systems or files
	• It’s not a low-level technical feature
	• It’s not an architectural change

	What is an application?
	• A business application is comprised of entitlements
	• Entitlements often exist as a simple flat list. Bringing these entitlements
	under governance is about organizing them into larger, more manageable units
	• As an example, One Identity has customers who use an AD LDS tree to
	implement 1000s of business application authorizations
	• A business application may not exist as such in any one target system – it
	may span several types of target systems

	What is an entitlement?
	An entitlement can be one of the following:
	• A system entitlement from the Unified Namespace
	• A system role
	• A resource
	• An account definition
	• A subscribeable report

	Application Governance
	The Application Governance Module delivers an easy way for
	application owners to:
	• Determine who can request entitlements
	• Choose specific entitlements for certification campaigns
	• Validate KPIs against business objectives
	• Publish applications to the IT Shop service catalog