Relief of the helpdesk through decentralized administration of SAP authorizations or self-service
MAINTAINET AG
Identity Solutions
With our efficient Identity & Access Management solutions, we enable you to manage users securely and save significant time and costs.
The Know-How-Company
Maintainet AG
For over 20 years, we have been providing secure identity and access management solutions for enterprises and public institutions in Germany and Europe. Our smart software architectures are customized and offer seamless integration into our customers’ business processes.
We offer a direct contact person on site as well as remote support by our experienced specialists. Our solutions are easy to use and manage and provide around-the-clock support. Contact us for more information.
Sustainable concepts
Customized solutions
We are always available for expert integration of diverse security solutions in cooperation with our partners. Thereby, our service portfolio ranges from the identification of possible application areas to the complete implementation and support. 24×7 technical support, remote assistance and official Micro-Focus/OpenText trainings complete the service portfolio. Our qualified training managers accompany your company and your employees with individual coaching.
protect your company data with our it-check-up
Improve IT processes and identify weak points!
Free consultationbusiness cases
Projects
CASE #1
Replacement of a Notes-based role administration and integration of approx. 100 SAP systems into the IDM. The approx. 1 million SAP roles are to be mapped in the IDM. The administration is to be carried out from a workflow and use the SAP GRC module as well as being as user-friendly as possible. In addition, it should be possible to reset the SAP password from within identity management, whereby possible user locks should be lifted.
The roles must be permanently synchronized with the SAP systems. A search in the workflow should be possible by SAP system as well as by role and must be fluent. There are different numbers of approvers per system and role.
Creating a JAVA class to call the corresponding BAPI for importing the roles from SAP. A NULL driver is used to import and permanently synchronize the roles from all systems. For the provisioning of the accounts and roles as well as the password reset, a SAP user management driver in fan-out mode is used. A JAVA-based client is written for the simple administration of the configuration of the approx. 100 SAP systems.
Creation of a workflow to apply for roles according to the department affiliation. Transmission of the request to SAP GRC via SOAP and evaluation of the response. According to this and the number of further approvers the authorization is granted or not.
Creating a logic driver for the dynamic configuration of the approver groups.
Operating costs
Basic automation of the assignment of basic authorizations
Centralized role management for all authorizations
User productivity
Reliable and fast withdrawal of rights at the end of the contract
Time limited permissions
Enforcement of segregation of duties policies
Safety compliance
Minimization of waiting time when resetting SAP passwords
Self-service during SAP password reset
Faster onboarding
CASE #2
Integration of a university’s card management system with the IDM system. Establish a uniform electronic management of images for printing student ID cards and ensure that the images are authentic and correspond to the necessary dimensions and resolutions.
Today’s images now have very high resolutions and therefore also require a correspondingly large amount of memory. This resolution is neither useful for saving nor for printing. In addition, it must be ensured that the person in the picture also corresponds to the person applying for the permit. For regulatory reasons, the images should be deleted after printing. Nevertheless, it must be possible for the person himself to manage the image.
Another challenge is the printing itself. At the beginning of the semester, large quantities of cards are printed, which is very time-consuming. Here a possibility has to be created to prioritize cards for second printing or to send them to other printers. The students should be informed about the printing and should be able to acknowledge the receipt of the card as uncomplicated as possible.
Establishment of a workflow for initial registration and a workflow for further self-administration of student data. Integration of a photo upload with predefined parameters and grop function. Automatically downsample the resolution of the uploaded image to minimize storage requirements and store in the directory service.
Implement a semi-automated process to validate the photo and then transfer it to the card management system. Manage various re-print options through the IDM (card loss, defective card, renewing the photo). Managing the corresponding card options (semester ticket, semester abroad, leave of absence, etc.) in the IDM and transferring them to the card management system in the corresponding print format.
Set up queue management so that new cards are not printed immediately, but in bundles of at least 10 cards to optimize printing.
Time saved because the process of uploading photos now resides with the student and no longer has to be done manually in Student Services via scanners
Centralized administration and self-service relieve the burden on student administration
Expeditious processing of requests for reprinting in the event of loss or defect
Low waiting times among students
Reduce the cost of printing through optimized queues