KuppingerCole Report
Leadership Brief
By Martin Kuppinger

IAM for Robotic Process Automation: How to avoid Security Challenges

Robotic Process Automation (RPA) is one of the trending topics in today’s IT environments. RPA promises to automate manual tasks within business processes by implementing (software) “robots” that perform these tasks instead of humans. Such software robots must have a digital identity, and the access rights of these robots must be kept under control for enforcing the Principle of Least Privilege and avoiding major security challenges. IAM for RPAs, therefore, must be carefully considered and planned.

1 Executive Summary

RPA is used in different scenarios. One major scenario is automating manual, repetitive tasks, e.g. by automating data entry via screen scraping. Another, more complex one, is using AI for augmenting and replacing human decision making and understanding of text and other information.

From a security and IAM perspective, the main challenge is not creating “super robot” accounts that accumulate entitlements from many former human tasks, but having well-thought-out frameworks, processes, and mechanisms in place for creating targeted robot accounts, assigning and governing only the minimum required entitlements, and mitigating risks of relying on non-human (functional) accounts for robots.

Furthermore, authentication of robots can become a specific issue, which needs to be understood and solved.

However, all aspects of IAM for RPA can be managed well by relying on standard IAM capabilities, specifically IGA (Identity Governance and Administration) for Lifecycle Management and Access Governance, and PAM (Privileged Access Management) for specific challenges that are associated with using non-human, functional accounts.

2 Analysis

RPA has evolved into a priority topic for many businesses, promising business process optimization and cost reduction. However, RPA comes with various ...

Accounts for robots must be defined for the business activity in scope. Thus, a robot account will have even fewer entitlements than the human that pe ...

Login Get full Access

3 Recommendations

IAM for RPA can build on standard IGA and PAM capabilities. IGA helps in the Lifecycle Management of robot accounts, as well as in assigning and appr ...

Login Get full Access


©2021 KuppingerCole Analysts AG all rights reserved. Reproduction and distribution of this publication in any form is forbidden unless prior written permission. All conclusions, recommendations and predictions in this document represent KuppingerCole´s initial view. Through gathering more information and performing deep analysis, positions presented in this document will be subject to refinements or even major changes. KuppingerCole disclaim all warranties as to the completeness, accuracy and/or adequacy of this information. Even if KuppingerCole research documents may discuss legal issues related to information security and technology, KuppingerCole do not provide any legal services or advice and its publications shall not be used as such. KuppingerCole shall have no liability for errors or inadequacies in the information contained in this document. Any opinion expressed may be subject to change without notice. All product and company names are trademarks™ or registered® trademarks of their respective holders. Use of them does not imply any affiliation with or endorsement by them.

KuppingerCole Analysts support IT professionals with outstanding expertise in defining IT strategies and in relevant decision-making processes. As a leading analyst ompany, KuppingerCole provides first-hand vendor-neutral information. Our services allow you to feel comfortable and secure in taking decisions essential to your business.

KuppingerCole, founded in 2004, is a global, independent analyst organization headquartered in Europe. We specialize in providing vendor-neutral advice, expertise, thought leadership, and practical relevance in Cybersecurity, Digital Identity & IAM (Identity and Access Management), Cloud Risk and Security, and Artificial Intelligence, as well as for all technologies fostering Digital Transformation. We support companies, corporate users, integrators and software manufacturers in meeting both tactical and strategic challenges and make better decisions for the success of their business. Maintaining a balance between immediate implementation and long-term viability is at the heart of our philosophy.

For further information, please contact clients@kuppingercole.com.