User provisioning software


User provisioning software is software intended to help organizations more quickly, cheaply, reliably and securely manage information about users on multiple systems and applications.

Background: systems, applications and users

People are represented by user objects or login accounts
on different systems and applications.
Examples of systems and applications include:
User objects generally consist of:
Note that users need not be able to log into a system or
application. The user object may be a record in an HR application or
an entry in a phone book system, which the user cannot log into but
which nonetheless represents the user.
User objects are generally connected to other parts of a system or
application through security entitlements. On most systems, this is
done by placing a user into one or more security groups, where users of
each group are granted some security rights.

User lifecycle processes

Organizations implement business processes to create, manage and delete
user objects on their systems and applications:
Incidentally, the term lifecycle does not imply that users who have been
deactivated will necessarily not be onboarded again. However, this does happen.
For example, employees may leave a company and be re-hired later, or
contractors may end their contract only to be hired as employees.

User provisioning systems

User provisioning systems are intended to help organizations streamline
user lifecycle processes so that updates to user objects on their systems
and applications can be made:
A user provisioning system may implement one or more processes to achieve
the aforementioned goals. These processes may include:
A user provisioning system must, in general, include some or all of the following components: