Preparing For A Software License Audit

Software Audit

For those anticipating a software license audit in the next year or so, the constant worry is certainly that the number of licenses purchased will deviate from the number of software applications actually used.

Without a solid overview of the relation between purchased licenses and those actually being used, an organisation runs the risk of incurring a substantial fine from their software vendor. Added to which, software costs can turn out higher than necessary as some licenses may not be used at all.

This is a common problem for many organisations, and occurs when new employees enter service and the privileges of employees in similar functions are copied to their user accounts. This often includes rights to applications the employee may not actually need.

In other cases, temporary access rights to applications that employees require for a particular project are not revoked once the project has been completed. Or worse still, accounts by employees who have left employment are not terminated. As such, there are a number of reasons why the number of licenses used may not match the number of licenses purchased.

To solve this problem and mitigate management of license costs while preparing for software license audits, there are several easy and available options:

Employ Automated User Provisioning & Role-Based Access Control Tools

Using the human resources system as the source for creating, modifying and removing user accounts and authorisations, employees can be assigned temporary access to the network and the applications they need. In the licensing context, this ensures that the rights of former employees are revoked in a timely fashion.

Combined with role-based access control (RBAC) – a solution that lets administrators assign rights based on the role or title of employees – rights will only be assigned once consensus has been reached on the applications that employees actually require for their daily work.

Use Dashboards To Monitor Software Access & Activity

Provide IT managers, systems administrators and administrators with a dashboard that lists the number of times an application has been launched by an employee, the number of minutes the application has been used, as well as the idle time in minutes.

If an application remains unused for a long period, the application can be revoked or the user can be given a warning. The total license costs and the status of used applications can be mapped out using an interface with a facility management system or IT service management system.

Passive Auditing

Periodically communicate with managers and send them an overview of the rights and applications to which his or her team has access. This reporting can take place, for instance, once every three months, once a year, etc. (for the software license audit). Managers can thus conveniently check whether everything is in order and give their approval. They can also make changes, which will be implemented directly.

Making a long story short, when expecting a software license audit in the future and when needing to prevent fines or to cut license costs, make sure to take the right precautions, most of which are simple to implement and can save organisations a great deal of cash associated with software fines or for paying for unused licenses.

SHARETweet about this on TwitterShare on LinkedInShare on FacebookShare on Google+Pin on PinterestDigg thisShare on RedditShare on TumblrShare on StumbleUponEmail this to someone
Dean Wiech

Dean Wiech is managing director at Tools4ever. Wiech is responsible for the Tools4ever operations the United States. His duties include direct sales, as well as the responsibility for the sales, technology and consulting team along with the day-to-day operations for the company. He attended the University of Akron and studied Chemical Engineering before deciding to pursue a career in technology. Tools4ever supplies a variety of software products and integrated consultancy services involving identity management, such as user provisioning, role-based access control, password management, single sign on and access management, serving more than 5 million user accounts worldwide.