Based on changes in user status or access requirements (death, resignation, dismissal, changed user roles, and location changes) Access Management adjusts access rights according to security policy. Obsolete or unwanted roles/groups must be removed. This might result in removal or restriction of access rights to services/service components used by the users. In case of access change, a fresh request should be raised and Access Management lifecycle must be followed. Users should be informed about the changes made.