The functions of RSA Identity Governance and Lifecycle, especially the IGA, are quite strong with their custom forms and workflows integrated.

The user interface is very friendly and easy to use, making it a good product overall. However, it still has to be on-premise and the cloud version is not easily accessible, as dedicated instances are required and machines cannot be shared as multi-tenant for various customers.

The advanced policy features of RSA definitely help in defining certain policies such as segregation of duties.

That's particularly useful along with creating different access reviews.

Regarding access control in simplifying access management, RSA Identity Governance and Lifecycle has strong foundations of groups and roles, which help in defining all policies very easily.

This makes it very easy to integrate with other access management tools or privileged access management tools.

The most valuable feature of the solution stems from the fact that it is really easy to have connectors to search for on-prem applications and provide access based on roles. In my company, with the help of the solution, we set up job templates based on the HR data we get, and we also provide IT access, a part that we have included in a matrix based on what type of users we have.

RSA Identity Governance and lifecycles are good for the access certification and auditing sections.

The data collection is excellent and easy to do. It does not require a lot of configuration nor does it require rules to be written like other competitors do.

The most valuable feature is the security, in particular, the One Time Password support.

• Roles
• Connectors for provisioning
• Re-accreditation or reviews

These help greatly to govern user access.

It's used for basic two-factor authentication.

It allows users to authenticate using two-factor authentication, which is becoming more and more of a regulatory requirement.

Random token generation.

Synchronization with Active Directory to import all your users makes getting started with the product very easy. In conjunction with software based tokens and some end user training, you can be up and running with a fresh deployment in a matter of days.