Unstructured-data scope
File shares, SharePoint, OneDrive, Box, Google Drive, and the long tail of unstructured stores. Traditional IGA misses this scope.
OpenText • Identity and access management
OpenText Data Access Governance
OpenText Data Access Governance carries the NetIQ Data Access Governance lineage with unstructured-data permission management, file share and SharePoint entitlement reviews, and audit-ready evidence on the data permissions traditional IGA misses.
Through Merito, Data Access Governance gets pointed at the customer's actual unstructured-data fabric (file shares, SharePoint, OneDrive, Box, Google Drive), prioritized by Core Data Discovery sensitivity classifications, and wired into NetIQ Identity Manager so rejected permissions actually get removed.
- Best for
- Compliance leaders extending IAM governance to unstructured data, Data privacy officers reviewing file share and SharePoint permissions, IAM leaders pairing Identity Governance with unstructured-data permission review
- Hosting
- Hybrid
- Time to value
- First file share and SharePoint inventory live in four to six weeks. Owner-led review cadence and remediation in eight to twelve weeks. Enterprise rollout typically runs six to twelve months.
- Security posture
- GDPR, HIPAA-aligned design, PCI DSS-aligned design
- Last reviewed
- 2026-04-26
What it is
OpenText Data Access Governance in the enterprise stack
OpenText Data Access Governance carries the NetIQ Data Access Governance lineage. Traditional IAM and IGA products focus on application entitlements (who has access to which application, with which role) and miss unstructured-data permissions (who can read which folder on the file share, who has access to which SharePoint site, who has direct OneDrive shares from former employees). Data Access Governance closes that gap: it inventories unstructured-data permissions, runs entitlement reviews on them, and surfaces high-risk exposures.
Unstructured-data scope is the load-bearing capability. File share permissions, SharePoint and OneDrive entitlements, Box and Google Drive shares, and the long tail of unstructured-data stores accumulate exposure over time as users get added, never get removed, and inherit access through nested groups. Programs running rigorous IGA on application entitlements but ignoring unstructured-data permissions have audit exposure and breach risk on the data attackers actually want.
Native pairing with Identity Governance is the platform claim. Where Identity Governance handles application entitlement reviews, Data Access Governance handles unstructured-data permission reviews. Same review cadence, same audit-evidence packaging, same closed-loop reject-and-remediate workflow. Programs running both get unified IAM governance across structured and unstructured access.
What undermines Data Access Governance adoption is data-volume scope creep. Unstructured-data inventories often run into hundreds of millions of permissions, and programs that try to review everything end up reviewing nothing. The right pattern is to scope by data sensitivity (classified data first, then high-volume sensitive stores, then long tail), pair with Core Data Discovery for classification feeding, and sequence the rollout. Merito's engagement scopes by sensitivity rather than trying to boil the ocean.
Ideal use cases
- Unstructured-data permission inventory across file shares, SharePoint, OneDrive, Box, Google Drive
- Entitlement reviews on unstructured-data stores
- Audit-ready evidence on file share and collaboration permissions
- Pairing Data Access Governance with Identity Governance for unified IAM coverage
- Sourcing classifications for downstream Voltage SecureData protection on unstructured data
What it is best at
Where OpenText Data Access Governance earns its seat
NetIQ DAG lineage
Established case law in regulated programs that need unstructured-data permission rigor.
Native pairing with Identity Governance
Coordinated review cadence and audit-evidence packaging across application and unstructured-data entitlements.
Permission-inheritance analysis
Surfaces nested-group permission inheritance that creates exposure programs do not realize they have.
Sensitivity-aware review
Pairs with Core Data Discovery classifications to prioritize review on regulated data exposures.
Core capabilities
OpenText Data Access Governance capabilities, grouped by outcome
Permission inventory
Where Data Access Governance maps the unstructured-data permission landscape.
File share scanning
NTFS, Samba, and other file share permission inventory.
SharePoint and OneDrive coverage
SharePoint site, library, and OneDrive direct-share permission inventory.
Cloud storage coverage
Box, Google Drive, S3, Azure Blob, GCS permission inventory.
Inherited-permission analysis
Surfaces nested-group inheritance that creates unintended exposure.
Review and remediation
Closing the loop on unstructured-data permission risk.
Owner-led reviews
Folder-owner-led or business-owner-led entitlement reviews on a configurable cadence.
Reject-and-remediate workflow
Owner rejection flows into permission removal; closed-loop remediation.
Risk-aware review
Sensitivity-aware review prioritization (classified data reviewed more frequently).
Stale-permission detection
Surfaces permissions on accounts that have been terminated or are no longer in the relevant department.
Integration and reporting
Data Access Governance inside the OpenText IAM line.
Identity Governance integration
Coordinated review cadence with application-entitlement reviews.
Identity Manager integration
Reject-and-remediate flows back into Identity Manager for permission removal.
Core Data Discovery pairing
Sensitivity classifications inform review prioritization.
Compliance reporting
Audit-ready evidence for SOX, HIPAA, GDPR, and unstructured-data permission mandates.
Where it fits in the stack
How OpenText Data Access Governance connects to the rest of your landscape
OpenText IAM and Data Security (native)
Native- OpenText Identity GovernanceCoordinated review cadence with application-entitlement reviews.
- OpenText Identity ManagerReject-and-remediate flows back into Identity Manager.
- OpenText Core Data Discovery and Risk InsightsSensitivity classifications inform review prioritization.
- OpenText Data Privacy and Protection FoundationVoltage SecureData protection on classified unstructured data.
Unstructured-data ecosystems (certified)
Certified- Windows file shares (NTFS), SambaFile share permission inventory.
- SharePoint, OneDrive, M365Microsoft collaboration permission inventory.
- Box, Google Drive, Dropbox BusinessCloud collaboration permission inventory.
- S3, Azure Blob, GCSCloud storage permission inventory.
Custom integrations
Custom- Internal collaboration platformsCustom permission inventory for non-standard collaboration platforms.
- Custom GRC reportingCustomer-specific audit-evidence formats.
- Federal compliance reportingFederal-aligned unstructured-data permission compliance evidence.
Deployment and implementation
How it rolls out
- Hosting
- Hybrid (North America, EMEA, APJ)
- Implementation complexity
- High
- Typical time to value
- First file share and SharePoint inventory live in four to six weeks. Owner-led review cadence and remediation in eight to twelve weeks. Enterprise rollout typically runs six to twelve months.
- Prerequisites
- Unstructured-data store inventory and sensitivity-tier definitions
- Named compliance and IAM owners
- Folder-owner and business-owner identification
- Review-cadence policy framework
- Integration plan with Identity Governance and Core Data Discovery
- What Merito usually handles
- OpenText Data Access Governance runs on-prem, hybrid, or BYOC. Merito handles unstructured-data scoping, permission scanning, owner-led review design, OpenText IAM line integration, and sensitivity-aware prioritization.
Licensing and packaging
How it is bought
- Model
- Subscription
- What to expect
- OpenText Data Access Governance is licensed by data volume scanned, repository count, and deployment shape (on-prem, hybrid). Pricing depends on coverage breadth and review-cadence scope. Merito holds the partner relationship and scopes the unstructured-data review program separately.
- Editions and modules
Data Access Governance
Standard edition with unstructured-data permission inventory and entitlement review.
Best for: Programs extending IAM governance to unstructured data.
Data Access Governance with Identity Governance
Bundled with Identity Governance for unified IAM review across structured and unstructured access.
Best for: Programs running unified IAM governance.
- Common expansion areas
- Add Identity Governance for application-entitlement reviews
- Add Identity Manager for reject-and-remediate provisioning integration
- Add Core Data Discovery for sensitivity classifications
- Add Data Privacy and Protection Foundation for Voltage SecureData protection on classified unstructured data
Merito services
How Merito helps you win with OpenText Data Access Governance
Merito sells licenses and the delivery work around them. Pick the service that matches where you are in the lifecycle.
01
Data Access Governance Implementation
Unstructured-data scoping, permission scanning, owner-led review design, OpenText IAM line integration, sensitivity-aware prioritization.
Explore service02MAPS Assessment
IAM and unstructured-data governance program scoping for Data Access Governance alongside Varonis and Microsoft Purview.
Explore service03DevOps Consulting
Permission-review automation and unified IAM workflow integration.
Explore service04Premium Support
Named engineer, priority SLAs, and release-time coverage for Data Access Governance.
Explore service05Managed Services
Long-term run support including review-cadence operation, sensitivity-aware policy maintenance, and IAM integration upkeep.
Explore service06Training and Enablement
Role-based training for compliance leaders, IAM operators, and folder-owner populations.
Explore service07Staff Augmentation
Merito-placed identity engineers and OpenText specialists embedded on long-running programs.
Explore serviceOpenText Data Access Governance licensing
License the unstructured-data review. Sensitivity-prioritize the cadence. Same engagement.
Data Access Governance pricing arrives with unstructured-data scoping, permission scanning, owner-led review design, and OpenText IAM line integration that close the unstructured-data gap traditional IGA leaves on file shares, SharePoint, and collaboration.
Merito point of view
Application IGA without unstructured-data governance leaves the breach surface open.
Merito has audited IAM programs that ran rigorous Identity Governance on application entitlements and ignored file share, SharePoint, and OneDrive permissions. The result is comprehensive review of who has access to Salesforce and zero review of who can read the financial-data folder on the file share. Attackers know the difference; auditors do too. Data Access Governance closes the gap that traditional IGA misses.
Merito recommends OpenText Data Access Governance specifically for programs running OpenText IAM line and Identity Governance, and for programs subject to unstructured-data permission audit mandates. For programs picking specialist unstructured-data security depth, Varonis is the established market leader. For programs in a Microsoft-only ecosystem, Microsoft Purview Data Lifecycle Management covers some of the same ground. Merito surfaces those alternatives honestly during scoping.
Sensitivity-aware prioritization is the load-bearing operational decision. Programs that try to review every permission on every unstructured store end up reviewing nothing. The right pattern is to pair with Core Data Discovery for classification feeding and review classified-data exposures first. Merito treats sensitivity-aware prioritization as central work in the implementation.
What buyers usually underestimate
- Running Identity Governance without Data Access Governance, leaving unstructured-data permissions unreviewed.
- Trying to review every permission on every unstructured store, drowning in volume.
- Skipping sensitivity-aware prioritization, treating low-volume regulated stores the same as high-volume general stores.
- Adopting Data Access Governance without integration with Identity Manager for reject-and-remediate, leaving rejected permissions in place.
- Picking Varonis when OpenText IAM line consolidation is the buying criterion, or vice versa, without honest scoping.
Related from Merito
Continue exploring OpenText Data Access Governance on Merito
Related solutions
Related services
Related products
- OpenText Identity GovernanceApplication-entitlement reviews paired with unstructured-data permission reviews.
- OpenText Identity ManagerProvisioning integration for reject-and-remediate flows.
- OpenText Core Data Discovery and Risk InsightsSensitivity classifications inform review prioritization.
- OpenText Data Privacy and Protection FoundationVoltage SecureData protection on classified unstructured data.
- OpenText Cybersecurity (vendor portfolio)Full OpenText Cybersecurity catalog across AppSec, IAM, SecOps, Data Security, and DFIR.
Frequently Asked Questions
OpenText Data Access Governance FAQs
Consultation request
Talk to Merito about OpenText Data Access Governance
Share your unstructured-data landscape, current IAM program, and compliance posture. A Merito OpenText specialist follows up within one business day.
Unstructured-data scope
File shares, SharePoint, OneDrive, Box
The permissions traditional IGA misses. Where the data attackers want actually lives.
Sensitivity-aware
Pair with Core Data Discovery
Classifications drive review prioritization so the program does not drown in volume.
Next step
Cover the data permissions traditional IGA misses.
A Merito Data Access Governance engagement starts with sensitivity-aware prioritization. Programs that run rigorous IGA without unstructured-data review leave the breach surface open.