What is Provisioning?

Provisioning in its very essence has a very simple meaning – supplying with / making something available.

As we expand and try to understand this word from an Information Technology business perspective, the definition gets more nuanced. It refers to an IT process involving some infrastructure enabling data and asset transfer.

As we go on even further and look at it from an Identity and Access Management (IAM) perspective for business, it takes up the meaning of an identity management process that overlooks the changes in data of identities and assets in identity stores.

User provisioning creates, updates, deletes, handles all identities (user accounts) across all connected IT Infrastructure, applications, data and assets for business.

• If all employers were to sit down to manage every employee / user account across every business application or network and service manually / individually, they would quickly go out of business. Provisioning, or “User Provisioning” enables seamless and automated control over all information updates and data that is required to be made when there is some change in data of a group of users – there might be address updations, account disables, new enrollments/creations, permission management, the list is endless for user management.

• It is estimated that in a business, an average-efficient IT department will take ~30 minutes to set up an employee account for every new hire, which is an enormous amount of time when scaled to hundreds of joinees. Not to mention the existing employees requiring security and attention on their accounts. This time can be greatly reduced by using User Provisioning processes.

• If an organization or business has ~15 business applications and assets across which it has accounts created for its employees / users, even if 5 employees / users leave, the IT department will need to delete ~50 user accounts across all these applications manually, which is clearly a big problem waiting to be solved. The solution is User Provisioning. It can be set up in a way that triggers necessary actions on data when particular changes are made. Like most good automation solutions today, it takes care of the most chaotic problem we face – human error. A problem without a pattern is very dangerous and any solution to it is instantly adopted.

• User Provisioning also greatly helps in improving the security and onboarding experience of new employees / users – nobody wants to sit and create multiple user accounts on the first day of work.

How does Provisioning work?

Now that we’ve understood that user provisioning is a simple but necessary identity management automation process that takes care of individual digital identities along with their access rights, permissions, and data changes for a business, let’s take a look at how it works.

When we look at an automated user provisioning information flow for a business, we see that users are added to applications and services based on specific, predefined user roles for security purposes. Whenever a user is assigned a role, that user is automatically created in the associated application/service and granted required access permissions.

Consequently, when any user is “deprovisioned”, that user’s identity, assets and all of its related accounts across the organization’s applications/services ecosystem are deleted without needing manual intervention. All granted permissions and authorizations are securely revoked, as a result.

Automated Provisioning & Deprovisioning

The automated provisioning means adding, updating, and deleting users, and managing user access in a network. In addition to eliminating the challenges and delays of manually managing profiles and account rights, it reduces human mistakes, improves operational efficiency, data privacy and eliminates network and other security breaches.

In the same way that Automated Provisioning can enable users to deploy and activate services, it can also disable their access to data, systems, and applications. This is known as Automated Deprovisioning.

Provisioning with miniOrange

With miniOrange and our wide range of User Provisioning solutions, you can create, manage, & delete your external and internal users’ access to on-premises, cloud, and hybrid apps.