What is Identity Governance and Administration and how does it work with VMware Cloud Services

Identity Governance and Administration (IGA) is a service that allows your enterprise to obtain data for audit trail and certification, and helps Organization Owner users to manage self-service access requests, approvals, violations, and API tokens in real time.

The IGA service comes with two sets of features: basic and advanced. It is only available to Organizations with federated domains.

To start using the basic IGA features, an Organization Owner must activate the IGA service by clicking the Get Started link on the Identity & Access Management > Governance page.
To start using the advanced IGA features, see How do I activate advanced Identity Governance and Administration in my Organization.

Using the IGA service in an Organization, lets VMware Cloud Services users do the following:


As an	with basic IGA	with advanced IGA
Organization Owner user	Access the IGA dashboard from the Identity & Access Management > Governance page in the Cloud Services Console. Activate or deactivate your Organization Members ability to submit self-service requests for additional roles. Govern access to services in your Organization by managing incoming Organization and service role requests. Monitor violations and immediately respond to threats.	Onboard a service in any governance activated Organization linked to your corporate identity provider.
Organization Member	If activated in the Organization, submit self-service access requests for additional Organization and service roles. See Request Roles in Governance Enabled Organizations.	Onboard yourself in any governance activated Organization linked to your corporate identity provider. See How do I onboard as a user with a federated account.