Firefighter ID force closer after completion of activity
We are implementing the GRC Access Control 10.1
We have a requirement in EAM, as below.
We have provided one day validity for FF id, Firefighter has completed
his activity in one hour, after that firefighter OR security team has to close the FF
security team is not intrested to keep the FF access for full one day (after completion of work).
Kindly let us know, this functionality is avaiable in GRC access
10.1. or not.
Thanks in advance.
Madhu Babu replied
As per your requirement you have to define a process where user after finishing the Firefighter activities required should inform the Security/Support team and they should revoke the access from the user from frontend.
Closing FF session forecefully means are you thinking about killing a session which is active using SM04, it can lead to issue like logs missing etc.
Better to have a proper process defined as well as make sure FF IDs usage process is defined and documented clearly which should be used for only specific issues.