Account Reviews or Access Recertification
In order to prove to your auditors, whether it’s internal control or external auditors, that the rights granted to your users are legitimate, it is essential to completely integrate the account and authorization review process through constant campaigns.
An isolated unit of authorization management cannot check the legitimacy of the rights granted to all of your collaborators, on all of your applications and environments, without a dedicated tool.
Thus, a model of your authorization system will be needed in order to easily select a scope of rights to review (organizational or resource).
Make sure that the chosen solution naturally integrates updates (such as transfers) between two campaigns.