Account creation

A requester logs into the Bravura Security Fabric web application and selects a menu item which allows him or her to create a new user profile. Depending on your current settings or permissions Bravura Identity might display a pre-defined request selection.

Bravura Identity displays a form to collect user profile information.

The requester types attribute values for the user; for example, the first name and last name.

Bravura Identity composes the new user’s Profile ID according to a configurable standard.

The requester selects templates representing individual accounts on target systems; alternatively, they select roles which may include sets of templates, group memberships, and other objects.

If applicable, the requester selects group memberships for the new accounts.

The requester may provide an initial password for the new user’s accounts. The new password is subject to Bravura Security Fabric ’s global password policy rules.

Bravura Identity also has built-in functionality to generate passwords for new accounts, based on configured password policies. In general, this would be a more secure approach.

The user submits the request and Bravura Identity enters it into authorization workflow.

In most cases, user provisioning requests require approval before they can be completed.

If applicable, the Workflow Manager Service routes the requests to the appropriate authorizers for authorization and ensures that all requests have sufficient approval before they can be fulfilled.

Once the request is authorized, the Transaction Monitor Service runs connector programs that create the accounts on target systems.

Bravura Identity creates a user profile if one does not exist. All the accounts requested will be automatically associated with the profile as soon as the request is completed.

Connector programs create new accounts by copying relevant parameters from the templates, setting attributes provided during the request, and adding group memberships.