US 12,314,384 B1
Systems and methods for detecting non-provisioned usage of applications in an organization
Tal Shapira, Tel-Aviv (IL); Eyal Asulin, Tel Aviv-Jaffa (IL); Or Elias, Tel Aviv (IL); Dana Hohenstein, Givatayim (IL); and Liron Ben Haim, Rehovot (IL)
Assigned to Recolabs Ltd, Tel Aviv (IL)
Filed by Recolabs Ltd, Tel Aviv (IL)
Filed on Nov. 6, 2024, as Appl. No. 18/938,365.
Int. Cl. G06F 21/55 (2013.01); G06F 21/00 (2013.01)
CPC G06F 21/55 (2013.01) [G06F 2221/2141 (2013.01)] 8 Claims
OG exemplary drawing
 
1. A method for identifying non-provisioned access to software applications, the method comprising:
collecting from resources used by an organization a data record of software applications used by entities of the organization and a list of accounts registered in the software applications;
performing an entity consolidation process to identify a main active directory (AD) account associated with a specific account; wherein the main AD account is the account used for provisioned access to the software applications;
extracting a list of application definitions that the main AD account of the specific account is assigned to access in a provisioned manner;
performing an application consolidation process to identify a generic application identifier associated with a specific application of the software applications; and
determining whether the specific account accesses the specific application in a provisioned manner or a non-provisioned manner according to the application definitions of the main AD account associated with the specific account.