If a user is eligble to logon to Topicus KeyHub, is managed at central level. Whether the user is allowed to access specific projects of passwords is managed by those individiual teams.
A user’s identity is being verified at a central position. Many organizations use tools like an Active Directory (AD) as a central storage containing all employee data. Such a system is generally managed by the Human Resources department and therefore considered as ‘the truth’. Topicus KeyHub-accounts are validated against this AD.
After logging on to Topicus KeyHub a user will need access to various servers, applications or passwords in order to work. As a single user only needs access to systems for his position, all other systems should remain inaccessible. Topicus KeyHub works with ‘authorisation groups’ which are managed by individual group admins. KeyHub-users can apply for access to a certain group and a group admin can allow or deny this request at any time with a push of a button. As each group has its individual admins this is called decentralized authorisation.