Provisioning Connectors
Typically 3-7 applications are selected for automated provisioning in a Phase I IDM project, then as the implementation matures this could lead to dozens if not hundreds of provisioning connectors.

Here is the common setup for new hires:

1. Generate a unique network name and email address
2. Email manager about new hire
3. Assign roles to the user based on their HR job position or locations
4. Automatically provision accounts
5. Send welcome email on employees start date with instructions

Here is a typical setup:

1. Deprovision access automatically to all connected applications
2. Open tickets to manually remove access to non-connected applications
3. Disable primary network account
4. Schedule a future job to delete primary network account
5. Email manager and IT teams about the termination
6. Allow manager delegated access to the terminated employee’s inbox

Here are some common workflows:

1. Contractor Management Workflow – Request contractor accounts, extend contractors and terminate contractors.
2. Non-User Accounts – Workflow to request and manage service, test, admin and mailbox accounts.
3. Contractor to Employee Workflow – Workflow process to make the necessary changes when a user transitions from a contractor to a full-time employee.
4. Advanced Access Approval Workflow – Here when an access request is made, particularly for sensitive access, a custom approval workflow is created to ensure specific teams and people sign-off before access is provisioned.