Tchater maintenant avec le support

Obtenir une aide instantanée
Terminer l’enregistrement

Se connecter

Demander les tarifs

Contacter le service des ventes

Identity Manager 8.1.4 - Attestation Administration Guide

Parcourir le contenu

Attestation and recertification

One Identity Manager users for attestation Attestation base data

Attestation types

Default attestation types Additional tasks for attestation types

Overview of the attestation type Assigning attestation procedures

Attestation procedure

General master data for an attestation procedure Defining reports for attestation Default attestation procedures Additional tasks for attestation procedures

Overview of the attestation procedure Assigning approval policies Creating a copy

Default schedules Additional tasks for schedules

Schedule overview Assigning attestation policies Starting schedules immediately

Compliance frameworks

Additional tasks for compliance frameworks

Compliance framework overview Assigning attestation policies

Chief approval team Standard reasons for attestation

Predefined standard reasons

Attestation policies

General master data for attestation policies Risk assessment Default attestation policies Additional tasks for attestation policies

The attestation policy overview Assigning approvers Assigning compliance frameworks Mitigating controls

Assigning mitigating controls Creating mitigating controls

Running attestation for single objects Showing or hiding conditions Creating a copy Showing selected objects Deleting attestation policies

Disabling attestation policies

Custom mail templates for notifications

Creating and editing attestation mail templates General properties of a mail template Creating and editing a mail definition

Using base object properties Use of hyperlinks in the Web Portal

Default functions for creating hyperlinks

Customizing email signatures

Copying mail templates for attestation Displaying attestation mail templates previews Deleting mail templates for attestation Custom notification processes

Approval processes for attestation cases

Approval policies for attestations

General master data for approval policies Default approval policies Additional tasks for approval policies

Editing approval workflows Validity checking

Approval workflow for attestations

Working with the workflow editor Setting up approval workflows

Editing approval levels Editing approval steps Properties of an approval step Connecting approval levels

Additional tasks for approval workflows

The approval workflow overview Copying approval workflows

Deleting approval workflows Default approval workflows

Selecting attestors

Default approval procedures

Using attestation policies to find attestors Using roles of employees to be attested to find attestors Using attestation objects to find attestors Using attestation object managers to find attestors Using persons responsible for attestation objects to find attestors Using a specified role to find attestors Using product owners to find attestors Using owners of a privileged object to find attestors Using additional Active Directory group owners to find attestors Using owners of the attestation objects to find attestors Using employees assigned to user accounts to find attestors Calculated approval Approvals to be made externally Waiting for further approval

Setting up approval procedures

General master data for an approval procedure Queries for finding attestors

Additional tasks for approval procedures

Overview of the approval procedure Specifying permitted approval procedures for tables Copying an approval procedure

Deleting approval procedures Determining the responsible attestors

Setting up multi-factor authentication for attestation Prevent attestation by employee awaiting attestation Attestation by peer group analysis

Configuring peer group analysis for attestation

Managing attestation cases

Getting more information Appointing other attestors Escalating an attestation case Attestors cannot be established Automatic approval on timeout Aborting an attestation case on timeout Attestation through chief approval team

Attestation sequence

Starting attestation Additional tasks for attestation cases

Attestation case overview Approval sequence Attestation history

Modifying approval workflows for pending attestation cases Closing attestation cases for deactivated employees Deleting attestation cases Notifications in the attestation process

Demanding attestation Reminding attestors Scheduling attestation demands Reminding attestors about attestation objects Granting or denying attestation cases Notifying delegates Aborting attestation cases Escalation of attestation cases Delegating attestations Rejecting approvals Notifications with questions Notifications from additional attestors Link for verifying new external users Default mail templates

Attestation by mail

Processing attestation mails

Default attestation and withdrawal of entitlements

System entitlements attestation System role attestation Application role attestation Business role attestation

User attestation and recertification

One Identity Manager users for attesting and recertifying users Configuring user attestation and recertification Attesting new users

Self-registration of new users in the Web Portal Adding new employees using a manager or employee administrator Importing new employee master data Scheduled attestation Limiting attestation objects for certification

Recertifying existing users

Preparing for recertification The recertification sequence Limiting attestation objects for recertification

Mitigating controls

General master data for mitigating controls Additional tasks for mitigating controls

Mitigating controls overview Assigning attestation policies

Calculating mitigation

Configuration parameters for attestation

Default attestation policies

One Identity Manager provides default attestation policies for default attestation of new users and recertification of all employees stored in the One Identity Manager database. In addition to this, default attestation policies are provided through which various roles, memberships in roles, and system entitlements can be attested.

To display default attestation policies

In the Manager, select the Attestation | Attestation policies | Predefined category.

You can customize the following properties for default attestation policies:

Approval policies (if several approval policies can be assigned)
Owner
Processing time
Risk index
Calculation schedule
Deactivated
Close obsolete tasks automatically
Obsolete tasks limit
Reason for decision
Condition
Approval by multi-factor authentication

NOTE: You can edit attestation policies, whose condition is stored as a definition (XML), in the Web Portal. The definition (XML) cannot be edited in the Manager. For detailed information, see One Identity Manager Web Portal User Guide.

Additional tasks for attestation policies

After you have entered the master data, you can run the following tasks.

The attestation policy overview

Assigning approvers

Assigning compliance frameworks

Mitigating controls

Running attestation for single objects

Showing or hiding conditions

Creating a copy

Showing selected objects

Deleting attestation policies

The attestation policy overview

You can see the most important information about an attestation policy on the overview form.

To obtain an overview of an attestation policy

In the Manager, select the Attestation | Attestation policies category.
Select the attestation policy in the result list.
Select Attestation policy overview task.

Assigning approvers

Use this task to assign employees that can be determined as approvers in an attestation case to the selected attestation policy.

To assign approvers to an attestation policy

In the Manager, select the Attestation | Attestation policies category.
Select the attestation policy in the result list.
Select the Assign approver task.

In the Add assignments pane, assign the approvers.
TIP: In the Remove assignments pane, you can remove approver assignments.

To remove an assignment
- Select the approver and double-click .
Save the changes.

Detailed information about this topic

Selecting attestors

Documents connexes

The document was helpful.

Sélectionner une évaluation

I easily found the information I needed.

Sélectionner une évaluation

© 2024 One Identity LLC. ALL RIGHTS RESERVED. Conditions d’utilisation Confidentialité Cookie Preference Center