The Protection of Personal Information Act (POPIA) is mandated by the South African government for data privacy to regulate how organizations operating from and outside South Africa can collect, store and process the personal information of citizens of South Africa. The first step to ensuring that your organization is compliant with POPIA is understanding why user data is critical and performing a comprehensive and continuous analysis on how access to such critical data is managed in your organization.
Last week's post was a detailed guide on how to track access and permission to data in your organization, using pre-packaged reports. The next step would be to establish organization wide policies for access and permission management. ADManager Plus' user provisioning templates can help manage access and permissions in a standard and streamlined manner, as and when user accounts are provisioned or modified.
How to customize User Provisioning templates with RBAC with ADManager Plus?
1. Logon to ADManager Plus.
2. Navigate to Management > User Management > User Templates > User Creation Templates > Create New Template.
3. Click on the Create Rules button at the top right corner.
4. In the Rule 1 section, click on Add Conditions. You can add multiple conditions to narrow down the access provided to a user. For example, if you want to add the managers of a specific location to a security group you can do so by adding conditions that say, 'If 'Title' equals 'Manager'', AND (+) 'If 'Office' equals 'Texas'' set 'Member Of' to 'Texas sec1'.
5. Add other attributes values and click Save Template.
Tune in next week for an interesting hack on customizing delete policies to align with POPIA compliancy requirements!