tenfold 25.0: Separation of Duties, Tagging & Streamlined Setup
tenfold’s governance toolset continues to grow with version 25.0 of our No-Code IGA solution. With Separation of Duties, admins can now prevent privilege conflicts even across multiple applications. New permission tags help orgs easily target privileges with SoD rules and other workflows. And a reworked install wizard further streamlines setup.
Separation of Duties: Identify & Stop Privilege Conflicts
To prevent individual users from circumventing internal controls, tenfold now allows you to enforce Separation of Duties. Create your own SoD rules to mark individual, multiple or specific combinations of privileges as mutually exclusive with one another. tenfold automatically prevents conflicting privileges from being assigned to the same user – even across different apps or systems. In addition, tenfold analyzes current privileges in your org to identify existing SoD violations.
How tenfold responds to a rule violation depends on the settings you choose for different SoD rules. Your options range from outright blocking conflicting privileges to merely being notified or granting access temporarily through an approval workflow. Temporary exceptions can be useful to ensure normal operations when team members in critical roles are unavailable.
Tag Privileges for Easier Enforcement
To more easily target access rights with SoD rules, tenfold now allows organizations to create tags for permissions, which can be applied either manually or automatically based on group/resource names. Tags allow you to target entire groups of privileges through Separation of Duties – without the need to create separate rules for each one.
However, tags also have many uses outside the new Separation of Duties feature. For example, if you create a “high risk” tag for critical permissions, you could use it to require stricter approval workflows and more frequent access reviews for any permission with this tag. With the ability to customize all sorts of workflows, permission tags allow for even more accurate governance and risk management processes.
Streamlined Setup with New Wizard
Thanks to its no-code approach and out-of-the-box support for different apps, tenfold can be deployed much faster than comparable Legacy IGA solutions. Setup times are now cut even shorter thanks to a reworked wizard that streamlines the configuration of basic settings such as field mappings for importing data or naming schemes for user accounts. This speeds up the initial config of new tenfold deployments and allows you to start governing identities and access even faster.