Right Sizing

Ensure your access flows grant the least-privileged access to users

Managing unused permissions, resources, and roles is essential for improving security and streamlining access management, but it can often be a complex task.

The Right Sizing page simplifies this process by providing a consolidated view of access flow resources and usage insights. This feature helps teams enhance security by aligning with the principle of least privilege and optimizing resource allocations. Through actionable recommendations, users can identify and remove unused access, keeping workflows secure and efficient.

For example, you might discover a Kubernetes namespace that hasn’t been used for months. With this insight, you can confidently remove it from the access flow, minimizing overprivileged risks and simplifying operations.

Key Benefits:

  • Comprehensive Insights: Gain visibility into access flow usage, highlighting overprivileged or underutilized resources, permissions, and user roles

  • Actionable Recommendations: Receive data-driven suggestions to remove unused access, helping to reduce risks and improve security posture

  • Continuous Monitoring: Access current month (updated daily) and monthly trend reporting to track improvements over time


Prerequisite

Item
Description

Access flow

One or more dynamic permissions workflows to define access to resources

If you have not already, get started with access flows.


Right size an access flow

Right Sizing page, Right Sizing Insights dashboard tile, and recommendation panel

Follow these steps to right size an access flow:

  1. On the Right Sizing tab, select an Access Flow from the dropdown menu. The right-sizing report for the current month-to-date appears.

  1. (Optional) Click the Period button to select a past month. Reviewing the report details for previous months enables you to identify usage trends.

  2. (Optional) Filter the list of resources by one or several of the following filters.

Integration

Follow these steps to filter by integration:

  1. Click the Integration dropdown menu.

  2. (Optional) In the Search field, enter a value to filter the list of integrations.

  3. Select one or several integrations. Only the resources meeting the criteria will be shown.

  4. Click the top or outside of the dropdown menu to close it.

Resource Type

Follow these steps to filter by resource type:

  1. Click the Resource Type dropdown menu.

  2. (Optional) In the Search field, enter a value to filter the list of resource types.

  3. Select one or several resource types. Only the resources meeting the criteria will be shown.

  4. Click the top or outside of the dropdown menu to close it.

Insight Type

Follow these steps to filter by resource status:

  1. Click the Insight Type dropdown menu.

  2. (Optional) In the Search field, enter a value to filter the list of resource statuses.

  3. Select one or several insight types. Only the resources meeting the criteria will be shown.

  4. Click the top or outside of the dropdown menu to close it.

  1. Click to view the right-sizing recommendation details. A panel appears that lists the recommendation and relevant items.

  2. Click Edit Access Flow. The Edit Access Flow page for the access flow appears.

  3. Remove the unused resources, inactive users, or unused permissions from the access flow.

  4. Click Save Access Flow to apply your changes.

Last updated

Was this helpful?