If the assignment of site, system, and data access rights is controlled poorly, this may quickly result in serious vulnerabilities (e.g. due to unchecked growth in assigned rights). When introducing identity management systems or performing audits, it often becomes apparent that various persons in different organisational units are responsible for assigning rights. In some circumstances, this can result in users being granted authorisations upon request or only via unnecessarily complicated methods. The resulting lack of authorisations may impede daily work, but granting authorisations when there is no need also leads to security risks.