#iam
14 artikelen met dit onderwerp
Onboarding–offboarding parity: the best test for your IAM
If onboarding does something, offboarding should undo it. When that parity breaks down, orphaned accounts pile up — often going unnoticed for years.
ToegangsbeheerGiving external parties access without leaving the door wide open
Consultant, accountant, freelance dev, partner company. All people who aren't employees but still need access to something. Here's a pattern that works — without ending up with 47 ghost accounts two years down the line.
Microsoft 365 & Entra IDEntra security groups as access profiles in your IAM tool
Already using security groups in Entra ID for SharePoint permissions? You can use those groups one-to-one as AccessProfiles — no duplicate work required.
ToegangsbeheerAccess matrix vs. RBAC: what fits your growth stage?
A direct matrix (person × system) works up to around 30 employees. After that, you go role-based. Here's when to make the switch — and how to do it without a big bang.
ToegangsbeheerBuilding a SaaS inventory: what's actually running in your business?
The average SMB has 47 active SaaS subscriptions. Half of them fly completely under the radar. Without an inventory, access management is impossible — you can't check the doors if you don't know they exist.
OffboardingWatertight Offboarding in 12 Steps
Someone is leaving. In SMEs, this is where most data breaches begin. Here is a checklist that covers what you actually need to do — with deadlines, owners, and pitfalls.
ToegangsbeheerIT onboarding checklist: what needs to be ready on day 1?
The best first day is a boring one. Laptop works, accounts are ready, folders are shared. This checklist covers the typical SMB scenario of 12 systems and 4 roles.
ToegangsbeheerTemporary access: how to grant it — and revoke it
A consultant for 6 weeks, a developer brought in just for the migration, a cover during maternity leave. Granting temporary access is easy — revoking it is where things go wrong.
ToegangsbeheerThe least-privilege principle explained for business owners
Grant as little access as possible, for as short a time as possible. That might sound like a productivity hit — in practice, it saves you from a data breach that takes months to explain away.
ToegangsbeheerPrivileged access management for SMBs
Global Admin, AWS root, Salesforce system admin — these are the accounts that cause the most damage when compromised. Here's what you can do without buying an expensive PAM tool.
ToegangsbeheerBirthright access: what does everyone get automatically?
Birthright access is the set of systems every employee should have from day one. Short, clear, almost always the same — and a huge time-saver during onboarding.
ToegangsbeheerRBAC: defining roles in an SMB without the bureaucracy
Role-Based Access Control sounds like an IT architecture party, but in an SMB it really just means: write down the 4–6 role types you have and which systems each role gets by default.
ToegangsbeheerBuild your first access matrix in an afternoon
The simplest step in access management is also the most important: write down who has access to what. Here's the recipe for a workable first version in under four hours.
ToegangsbeheerAccess Management for SMBs: The Complete Guide (2026)
From your first access matrix to periodic reviews and directory sync — everything you need to know when your business grows beyond 10 people but you don't have an IT department yet.